Windows Analysis Report
I8R24VDCOi.exe

Overview

General Information

Sample name:	I8R24VDCOi.exe (renamed file extension from none to exe, renamed because original name is a hash value)
Original sample name:	6e3c5f5597966cff1e50c43970281b70b31534e3
Analysis ID:	1541157
MD5:	b5cd3cbe8995dfc01f035b107322db51
SHA1:	6e3c5f5597966cff1e50c43970281b70b31534e3
SHA256:	9c28d8da7a38029e84dda55e3509399ca89655731a6cb275ff59b3fd13fd4649
Infos:

Detection

Score:	6
Range:	0 - 100
Whitelisted:	false
Confidence:	20%

Signatures

Creates a process in suspended mode (likely to inject code)

HTTP GET or POST without a user agent

IP address seen in connection with other malware

Installs a raw input device (often for capturing keystrokes)

JA3 SSL client fingerprint seen in connection with other malware

Monitors certain registry keys / values for changes (often done to protect autostart functionality)

PE file contains sections with non-standard names

Queries keyboard layouts

Queries the volume information (name, serial number etc) of a device

Uses a known web browser user agent for HTTP communication

Uses code obfuscation techniques (call, push, ret)

Very long cmdline option found, this is very uncommon (may be encrypted or packed)

Classification

Signatures

Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49731 version: TLS 1.2

Source: I8R24VDCOi.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\fa060d0f-39c1-4b0a-b653-5e7aa71261e2.tmp	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\	Jump to behavior

HTTP GET or POST without a user agent

Source: global traffic

HTTP traffic detected: GET /lencx/ChatGPT/main/scripts/manifest.json HTTP/1.1accept: */*host: raw.githubusercontent.com

IP address seen in connection with other malware

Source: Joe Sandbox View	IP Address: 162.159.61.3 162.159.61.3
Source: Joe Sandbox View	IP Address: 185.199.108.133 185.199.108.133
Source: Joe Sandbox View	IP Address: 185.199.108.133 185.199.108.133
Source: Joe Sandbox View	IP Address: 104.18.94.41 104.18.94.41

JA3 SSL client fingerprint seen in connection with other malware

Source: Joe Sandbox View

JA3 fingerprint: 3b5074b1b5d032e5620f69f9f700ff0e

Uses a known web browser user agent for HTTP communication

Source: global traffic	HTTP traffic detected: OPTIONS /report/v4?s=AV6wXoXwDiFa2kAZAebAMJt%2BTSlB3xS0XrY%2FGLd8wAnU7YsZ%2Fo6%2F97SrMSN%2FcKc0D4ciXoI%2BeFr99NoPlXrZcVlvOqSHzvKjKakolcYLTBKlFN4hA5mTeQt08Bj%2BbTU5BQ%3D%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveOrigin: https://chat.openai.comAccess-Control-Request-Method: POSTAccess-Control-Request-Headers: content-typeUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2728ba4c86f HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OWlVE8SPcNBU.4PYac3.CvmFdPDNrnMWud3IPRv2r_k-1729772045-1.0.1.1-FaJ15L4rrWPMnphtUskDPUMNkVYePEnoZLSvDxWCI3UAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=sdHBg6oF4H6FWxQ60X.5uZVt6GdFGgW512xlAXuvvIk-1729772045-1.0.1.1-UckP2AiJT2n5xudaqhGVxhSavJQwoe38qCHkxcPijBK0X3f2tPoC_bu0LHj8Suz0I5H_pdE4EUnJAsWaGRSrKQ
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2774d442cde HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OMNPTxa5dcbdWDC5zF10_TTA4FAlFeYFzZm.zKDL9MY-1729772045-1.0.1.1-oGUTHZxBlovQ_gIL5xQ1jaizOH9wXBLvxoJ_1YkF2p4Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2728ba4c86f/Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7O HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4576User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1CF-Challenge: Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7OContent-type: application/x-www-form-urlencodedAccept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=PYa1QMaEAlNq8AXCZuYgo17lZguigSB142jsoN54yjA-1729772047-1.0.1.1-NXX.Lfh2DS0RB2OrlPcc6VrP3TisYFyDxW9FNDoGM9_HcK7f7_ypBkc5Ujem28EaOoCadx7umKyLOZxcOAxrDg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=PYa1QMaEAlNq8AXCZuYgo17lZguigSB142jsoN54yjA-1729772047-1.0.1.1-NXX.Lfh2DS0RB2OrlPcc6VrP3TisYFyDxW9FNDoGM9_HcK7f7_ypBkc5Ujem28EaOoCadx7umKyLOZxcOAxrDg
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveOrigin: https://chatgpt.comUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/t722o/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2774d442cde/ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjN HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4598sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjNsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2774d442cde/ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjN HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 5934sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjNsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=ysrGvPmqhbqYx9hKvni415uvjO__4.xgdhrK.8AeKR0-1729772056-1.0.1.1-8bWYXZaq.ASgU.3ns_xLGRgw.nJpRbCVD3gnD_eHFkoSW2C_5IZScKae9.mTVh1vW8K3WRS2L8wAGhX1Kj.lVA
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2728ba4c86f/Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7O HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 5583User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1CF-Challenge: Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7OContent-type: application/x-www-form-urlencodedAccept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=ysrGvPmqhbqYx9hKvni415uvjO__4.xgdhrK.8AeKR0-1729772056-1.0.1.1-8bWYXZaq.ASgU.3ns_xLGRgw.nJpRbCVD3gnD_eHFkoSW2C_5IZScKae9.mTVh1vW8K3WRS2L8wAGhX1Kj.lVA
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2f4cd0c8788 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=20txOQoVK95DoG_CQ5q6KcdMzflGfLsefy9rSRUI7iQ-1729772066-1.0.1.1-JFT1zQYUZnxXGuH4WMSvA1_NdrKhV2efJk2vSu0zPD0Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDcmxvg4IT5wiF0B2zJ5KAeT8R8/8d79e2f4cd0c8788/2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0q HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4601sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0qsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e300ee17ddae HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=8w9J9mNtfC6DhGfX8eRBt9XolDvbcfnCdeO8A7tCHUA-1729772067-1.0.1.1-MiHQPsyxieke70xcRzUl5l3hWeQrwMZQRg18duMpcgMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDcmxvg4IT5wiF0B2zJ5KAeT8R8/8d79e300ee17ddae/aQO6uSl8y3ViDGoOFfVtp9_9o74X77o_dW7pR9QUBig-1729772067-1.2.1.1-rpQKt5NL_ixqyaczBylL4cNNx1TyZkCmaCXTkznmW7NJZpjOPGwN20vTXUQWR7S0 HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4577User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1CF-Challenge: aQO6uSl8y3ViDGoOFfVtp9_9o74X77o_dW7pR9QUBig-1729772067-1.2.1.1-rpQKt5NL_ixqyaczBylL4cNNx1TyZkCmaCXTkznmW7NJZpjOPGwN20vTXUQWR7S0Content-type: application/x-www-form-urlencodedAccept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDcmxvg4IT5wiF0B2zJ5KAeT8R8/8d79e2f4cd0c8788/2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0q HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 5760sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0qsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8d79e36a9d700b76 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=EKnr2Edcj6ZkF4pygKDOGjVV6HATs.idxv5FCSbsCFo-1729772084-1.0.1.1-EZnBSw_.oM3HtwH5C5xr5cLkdO8sOD.j5sNd_MbjkxMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1274467767:1729768387:GZ03pNqdcvUyWi3tepVr5CneT2FTszG4NLRECEWjr3U/8d79e36a9d700b76/4rRr1xNn6FwY4ykYht78o1BBXfW68JsrOtAEo9iwHmg-1729772084-1.2.1.1-RT7MAMKq2U2V57BqkjG9u9lVXrrDkaCXEGYzzlcXHfOJFzVwDiiOCHaodXharcBz HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4553sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 4rRr1xNn6FwY4ykYht78o1BBXfW68JsrOtAEo9iwHmg-1729772084-1.2.1.1-RT7MAMKq2U2V57BqkjG9u9lVXrrDkaCXEGYzzlcXHfOJFzVwDiiOCHaodXharcBzsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: POST /componentupdater/api/v1/update?cup2key=6:zA-fqe23Zjma7QQvbkpD4CPvwbGWRIk97MMdoDIOR7w&cup2hreq=b625a8f99262a396d9fbb0706e4777b338edb793d786e234d6b4532962ef3d58 HTTP/1.1Host: edge.microsoft.comConnection: keep-aliveContent-Length: 4921X-Microsoft-Update-AppId: oankkpibpaokgecfckkdkgaoafllipag,kpfehajjjbbcifeehjgfgnabifknmdad,ohckeflnhegojcjlcpbfpciadgikcohk,fppmbhmldokgmleojlplaaodlkibgikh,ndikpojcjlepofdkaaldkinkjbeeebkl,fgbafbciocncjfbbonhocjaohoknlaco,ahmaebgpfccdhgidjaidaoojjcijckba,ojblfafjmiikbkepnnolpgbbhejhlcim,alpjnmnfbgfkmmpcfpejmmoebdndedno,jbfaflocpnkhbgcijpkiafdpbjkedane,eeobbhfgfagbclfofmgbdfoicabjdbknX-Microsoft-Update-Interactivity: bgX-Microsoft-Update-Service-Cohort: 3521X-Microsoft-Update-Updater: msedge-117.0.2045.47Content-Type: application/jsonSec-Mesh-Client-Edge-Version: 117.0.2045.47Sec-Mesh-Client-Edge-Channel: stableSec-Mesh-Client-OS: WindowsSec-Mesh-Client-OS-Version: 10.0.19045Sec-Mesh-Client-Arch: x86_64Sec-Mesh-Client-WebView: 1X-Client-Data: COrjygE=Sec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, br
Source: global traffic	HTTP traffic detected: OPTIONS /report/v4?s=3V7tZg8DupBWa%2Ff7S9JM8GFtlRid9dl3Bd35rdFUGaO%2BBiZk%2BKOR78XEahTbWD9%2BIghfA%2F63sNGZv9p%2ByZXnARv2Cm5zxa8K1sT6TPQCdCvn6pPPt%2FSD05VoJUqk HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveOrigin: https://chatgpt.comAccess-Control-Request-Method: POSTAccess-Control-Request-Headers: content-typeUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8

Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41

Source: global traffic	HTTP traffic detected: GET /ChatGPT/install.json HTTP/1.1accept: application/jsonconnection: closeaccept-encoding: gzip, deflateuser-agent: attohttpc/0.22.0host: lencx.github.io
Source: global traffic	HTTP traffic detected: GET /lencx/ChatGPT/main/scripts/manifest.json HTTP/1.1accept: /host: raw.githubusercontent.com
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2728ba4c86f HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OWlVE8SPcNBU.4PYac3.CvmFdPDNrnMWud3IPRv2r_k-1729772045-1.0.1.1-FaJ15L4rrWPMnphtUskDPUMNkVYePEnoZLSvDxWCI3UAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=sdHBg6oF4H6FWxQ60X.5uZVt6GdFGgW512xlAXuvvIk-1729772045-1.0.1.1-UckP2AiJT2n5xudaqhGVxhSavJQwoe38qCHkxcPijBK0X3f2tPoC_bu0LHj8Suz0I5H_pdE4EUnJAsWaGRSrKQ
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2774d442cde HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OMNPTxa5dcbdWDC5zF10_TTA4FAlFeYFzZm.zKDL9MY-1729772045-1.0.1.1-oGUTHZxBlovQ_gIL5xQ1jaizOH9wXBLvxoJ_1YkF2p4Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=PYa1QMaEAlNq8AXCZuYgo17lZguigSB142jsoN54yjA-1729772047-1.0.1.1-NXX.Lfh2DS0RB2OrlPcc6VrP3TisYFyDxW9FNDoGM9_HcK7f7_ypBkc5Ujem28EaOoCadx7umKyLOZxcOAxrDg
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveOrigin: https://chatgpt.comUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/t722o/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2f4cd0c8788 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=20txOQoVK95DoG_CQ5q6KcdMzflGfLsefy9rSRUI7iQ-1729772066-1.0.1.1-JFT1zQYUZnxXGuH4WMSvA1_NdrKhV2efJk2vSu0zPD0Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e300ee17ddae HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=8w9J9mNtfC6DhGfX8eRBt9XolDvbcfnCdeO8A7tCHUA-1729772067-1.0.1.1-MiHQPsyxieke70xcRzUl5l3hWeQrwMZQRg18duMpcgMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8d79e36a9d700b76 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=EKnr2Edcj6ZkF4pygKDOGjVV6HATs.idxv5FCSbsCFo-1729772084-1.0.1.1-EZnBSw_.oM3HtwH5C5xr5cLkdO8sOD.j5sNd_MbjkxMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3

Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.cn/https://rewards.microsoft.com/https://www.microsoftnews.com/https://www.facebook.com/www.staging-bing-int.comaction.getBadgeTextColorhttps://outlook.live.com/https://rewards.bing.com/https://www.microsoftnews.cn/translatorserp.bing.comhttps://translator.bing.com/manifest:action equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00874000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.cn/https://rewards.microsoft.com/https://www.microsoftnews.com/https://www.facebook.com/www.staging-bing-int.comaction.getBadgeTextColorhttps://outlook.live.com/https://rewards.bing.com/https://www.microsoftnews.cn/*translatorserp.bing.commanifest:browser_action equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://rewards.microsoft.com/https://www.microsoftnews.com/https://www.facebook.com/www.staging-bing-int.comaction.getBadgeTextColorhttps://outlook.live.com/https://rewards.bing.com/https://www.microsoftnews.cn/translatorserp.bing.comhttps://translator.bing.com/*manifest:action equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.facebook.com/* equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: www.facebook.com equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: raw.githubusercontent.com
Source: global traffic	DNS traffic detected: DNS query: lencx.github.io
Source: global traffic	DNS traffic detected: DNS query: chat.openai.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: chatgpt.com
Source: global traffic	DNS traffic detected: DNS query: chrome.cloudflare-dns.com

Source: unknown

HTTP traffic detected: POST /dns-query HTTP/1.1Host: chrome.cloudflare-dns.comConnection: keep-aliveContent-Length: 128Accept: application/dns-messageAccept-Language: *User-Agent: ChromeAccept-Encoding: identityContent-Type: application/dns-message

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:05 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9088Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:05 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9195Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:07 GMTContent-Type: text/html; charset=UTF-8Content-Length: 10478Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:09 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:12 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9569Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:16 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9249Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:26 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9642Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:27 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9344Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:28 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:30 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9313Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:32 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9292Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:35 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9591Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:44 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9621Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:46 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:48 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge

Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/1423136
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2162
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2517
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2970
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3078
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3205
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3206
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3452
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3498
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3502
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3577
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3584
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3586
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3623
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3624
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3625
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3832
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3862
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3965
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3970
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4324
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4384
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4405
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4428
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4551
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4633
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4722
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4836
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4901
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4937
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5007
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5055
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5061
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5281
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5371
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5375
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5421
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5430
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5535
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5658
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5750
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5881
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5901
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5906
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6041
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6048
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6141
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6248
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6439
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6651
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6692
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6755
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6860
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6876
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6878
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6929
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6953
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7036
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7047
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7172
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7279
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7370
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7406
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7488
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7553
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7556
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7724
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7760
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7761
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8162
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8215
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8229
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8280
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://c.pki.goog/r/gsr1.crl0
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://c.pki.goog/r/r4.crl0
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://c.pki.goog/we1/R7LgAnKD4Lk.crl0
Source: msedgewebview2.exe, 0000000A.00000003.1802968365.00006A38009F0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1806282614.0000234800B30000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804365279.0000234800B28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://challenges.cloudflar.com/turnstile/v0/~nNEv~cLt~dFDjq~NAIph~ppgxp~ntrd~QtkSf~IdlHB~dSXgi~AjJb
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://chat.openai.com/
Source: msedgewebview2.exe, 00000008.00000002.1772684218.00001AFC0028C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786252225.00004B500028C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821479664.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846186065.0000503C0028C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1820993138.0000503C00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1839921267.000057D4006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1839211956.000057D400694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1839411341.000057D4006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crrev.com/c/2555698.
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://i.pki.goog/gsr1.crt0-
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://i.pki.goog/r4.crt0
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://i.pki.goog/we1.crt0A
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://issuetracker.google.com/200067929
Source: I8R24VDCOi.exe, 00000000.00000003.1704732916.0000024345D3C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760721524.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704732916.0000024345D39000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739085077.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704655122.0000024345D3A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C66000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704790070.0000024345D63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C48000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739053435.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D5F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704849226.0000024343C3F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760679045.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012363893.00007C44012F8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://jaywcjlove.github.io/hotkeys
Source: msedgewebview2.exe, 0000000E.00000002.2036646483.000057D400E0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://lists.w3.org/Archives/Public/public-svg-wg/2008JulSep/0347.html
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://o.pki.goog/s/we1/Bmk0%
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://opensource.org/licenses/mit-license
Source: msedgewebview2.exe, 0000000E.00000002.2018239308.000057D400978000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/https://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/v1/accountcapabilities:batchGet
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/v1/accountcapabilities:batchGethttps://permanently-removed.invali
Source: msedgewebview2.exe, 0000000E.00000003.1869073304.000057D40078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.fpdf.org/en/script/script37.php
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.myersdaily.org/joseph/javascript/md5.js
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.phpied.com/rgb-color-parser-in-javascript/
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2058242805.00007C44015B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2060887372.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.yworks.com
Source: msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871754042.000057D400B28000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871297301.000057D400B08000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://wwww3.org/2000/svg~jExMT~YiJe~Xcamz~tXayg~requesturnstileResults~
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/4830
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/4966
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/5845
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/6574
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7161
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7162
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7246
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7308
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7319
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7320
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7369
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7382
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7489
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7604
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7714
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7847
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7899
Source: msedgewebview2.exe, 00000009.00000003.1759030203.00004B5000E7C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1869374465.000057D400D4C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/pdfobject/2.1.1/pdfobject.min.js
Source: msedgewebview2.exe, 0000000B.00000003.1994646124.0000234801A6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chalenges.cloudflare.com/tunstile/v0/~BhMzQ~charAtgqWdW0~auIQt~jkaZY~KWFj~cRay~zkJjx~flex~JC
Source: msedgewebview2.exe, 0000000B.00000003.2060634859.00002348010D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges-staging.cloudflare.com
Source: msedgewebview2.exe, 0000000A.00000003.2016079331.00006A38010BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2016769558.00006A38010C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges-stging.cloudflare.com
Source: msedgewebview2.exe, 00000006.00000003.2009457662.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudfl
Source: msedgewebview2.exe, 0000000E.00000002.1993293333.000057D400238000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com
Source: msedgewebview2.exe, 0000000E.00000002.2002905272.000057D40065C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/574d0e21-42e1-473e-9075-8701e4d77dbe
Source: msedgewebview2.exe, 0000000E.00000002.2005792754.000057D400718000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/ad748dc4-a1bc-4bb8-843c-7d558ae2b953
Source: msedgewebview2.exe, 0000000E.00000002.1993293333.000057D400238000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1
Source: msedgewebview2.exe, 0000000E.00000002.2005792754.000057D400718000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1a
Source: msedgewebview2.exe, 00000006.00000003.2008782160.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1895393915.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008143550.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2006382579.000057D40074C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1937375013.000057D401F55000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2053790954.000057D401FEC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1449939122:1729702709:uPA6
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ay=8d79e2982
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d79
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d792982
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1877913111.000057D400B28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d79e298
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d79e2a7
Source: msedgewebview2.exe, 0000000E.00000002.2044241908.000057D401E52000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1993293333.000057D400238000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998160424.000057D40028C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/71fm5/0
Source: msedgewebview2.exe, 0000000E.00000002.1998160424.000057D40028C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/t722o/0
Source: msedgewebview2.exe, 00000002.00000003.2035491750.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tdjl9/0
Source: msedgewebview2.exe, 0000000E.00000002.1976124638.0000017600802000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit
Source: msedgewebview2.exe, 0000000A.00000003.2006946826.0000036E000C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit5
Source: msedgewebview2.exe, 00000002.00000003.2010755038.00007C4402A64000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2007919575.00007C4402A44000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2010425017.00007C4402A74000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2010596739.00007C44013CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2008280451.00007C44012DC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2009263855.00007C4402A34000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2010049191.00006A38013EC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2010211364.00006A3800E68000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008D0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009610159.00006A380141C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2010428156.00006A380129C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987505274.0000234800A9C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987074436.0000234801AF8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987179056.0000234801AE8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1986865251.000023480086C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987412262.0000234801478000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2060634859.00002348010D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicitaDb
Source: msedgewebview2.exe, 0000000B.00000003.1845928593.00002348010E8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/~nNEvE~cLt~dFDjq~NAIph~ppgxp~Hntrd~QtkSf~IdlHB~dSXgi~
Source: msedgewebview2.exe, 0000000E.00000002.1976124638.0000017600282000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com5EF8AE74674958E1E29E59F8762B744C
Source: msedgewebview2.exe, 0000000E.00000002.1973884400.00000176001C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.comA872D276C863E280F343B2B82F337928
Source: msedgewebview2.exe, 0000000E.00000002.2002905272.000057D40065C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.comA872D276C863E280F343B2B82F337928a)
Source: msedgewebview2.exe, 0000000E.00000002.2047730627.000057D401F14000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.comdlerukm.mojom.UkmRecorderInterface
Source: msedgewebview2.exe, 00000006.00000003.2009457662.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflre.com/
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706344899.0000024343CA5000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748549375.0000024343CA2000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748699375.0000024343C38000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com
Source: I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1803204721.00007C440242C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772623177.00007C440242C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772597009.00007C44005B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829959849.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1803172044.00007C44005B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1803899706.00007C4400F70000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1871213536.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1856439662.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1789640257.00006CAC0011C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1780369782.00006A380082C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1989905166.00002348003B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C59000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/4
Source: I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/Ctrl
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/Just
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/R
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/a
Source: msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2009695159.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2009695159.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2045080087.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060F000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008782160.00006CAC00120000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813818090.00006CAC001AB000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2009457662.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1820612855.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848166981.00006CAC00424000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813941609.00006CAC0042C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1819137114.00006CAC0041C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848102403.00006CAC00428000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2052244026.00006CAC0042C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1814053490.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/
Source: msedgewebview2.exe, 00000002.00000003.2010213550.00007C44013F0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2081278119.00006A38010A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2003062297.00006A38013A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2072657471.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2059503225.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2066320612.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2021151842.00002348012E8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1967219071.0000234800CE4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1975389350.0000234801A2C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1973422712.0000234801222000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/(
Source: msedgewebview2.exe, 0000000A.00000003.2057723069.00006A3800B02000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/63ebe155-3532-44fd-be66-a30d2958c46f
Source: msedgewebview2.exe, 0000000B.00000003.1946035046.000002E600B42000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/6cd9228f-9052-4c37-96fa-fcbdab4bfb6d
Source: msedgewebview2.exe, 0000000A.00000003.2017318459.00006A3800B04000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/?__cf_chl_rt_tk=8w9J9mNtfC6DhGfX8eRBt9XolDvbcfnCdeO8A7tCHUA-1729772067-1.0.1.1-M
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/?__cf_chl_rt_tk=OMNPTxa5dcbdWDC5zF10_TTA4FAlFeYFzZm.zKDL9MY-1729772045-1.0.1.1-o
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/?__cf_chl_rt_tk=OWlVE8SPcNBU.4PYac3.CvmFdPDNrnMWud3IPRv2r_k-1729772045-1.0.1.1-F
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/Just
Source: msedgewebview2.exe, 0000000B.00000003.1989905166.00002348003B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/Report-To:
Source: msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1828799314.00007C4402538000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060F000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813818090.00006CAC001AB000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1820612855.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848166981.00006CAC00424000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813941609.00006CAC0042C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848102403.00006CAC00428000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1814053490.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2035401877.00006CAC00378000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008782160.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1895393915.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813818090.00006CAC001A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008143550.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1835861336.00006A3800F5F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iT
Source: msedgewebview2.exe, 0000000A.00000003.2052235382.00006A3800ADE000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-41
Source: msedgewebview2.exe, 0000000A.00000003.2017318459.00006A3800B04000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2066320612.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2038808362.0000234800CA4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2083275643.0000234800CA4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2009808433.0000234800CD6000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2076671172.0000234801548000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016289815.0000234801338000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDc
Source: msedgewebview2.exe, 0000000A.00000003.2070386278.00006A38010F4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e300ee17ddae
Source: msedgewebview2.exe, 0000000A.00000003.2017318459.00006A3800B04000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/e3c6b8ce-fd30-4198-a0b2-c7dd34aa8257
Source: msedgewebview2.exe, 00000002.00000003.1856678237.00007C440264C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1830577977.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1842037284.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2007580090.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1871213536.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1805684165.0000234800AB6000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/favicon.ico
Source: msedgewebview2.exe, 0000000B.00000003.1805684165.0000234800AB6000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/favicon.icohttps://chatgpt.com/favicon.ico8(
Source: msedgewebview2.exe, 0000000A.00000003.2006946826.0000036E000C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com5
Source: msedgewebview2.exe, 0000000E.00000002.1994781361.000057D400264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstore
Source: msedgewebview2.exe, 00000009.00000002.1786141195.00004B5000264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstoreP
Source: msedgewebview2.exe, 00000008.00000002.1772571547.00001AFC00264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstorePI8
Source: msedgewebview2.exe, 00000008.00000002.1772571547.00001AFC00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786141195.00004B5000264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1845958344.0000503C00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1994781361.000057D400264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromewebstore.google.com/
Source: msedgewebview2.exe, 00000008.00000002.1772571547.00001AFC00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786141195.00004B5000264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1845958344.0000503C00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1994781361.000057D400264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromewebstore.google.com/6EAED1924DB611B6EEF2A664BD077BE7EAD33B8F4EB74897CB187C7633357C2FE8
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://docs.rs/getrandom#nodejs-es-module-supportCalling
Source: msedgewebview2.exe, 0000000B.00000003.1945543839.000002E600702000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.rs/tauri/1/tauri/scope/struct.IpcScope.html#method.configure_remote_access
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://docs.rs/tauri/1/tauri/scope/struct.IpcScope.html#method.configure_remote_accessO
Source: msedgewebview2.exe, 0000000A.00000003.1802968365.00006A38009F0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.rs/tauri/1/tauri/scope/struct.IpcScope.html#method.configure_remote_accessj8
Source: msedgewebview2.exe, 0000000E.00000002.2036646483.000057D400E0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drafts.csswg.org/css-color-adjust-1/#forced-colors-properties
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00883000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://easyauth.edgebrowser.microsoft-falcon.io/
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00883000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://easyauth.edgebrowser.microsoft-staging-falcon.io/
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00883000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://easyauth.edgebrowser.microsoft-testing-falcon.io/
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Flamenco
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Gavvers
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/HackbrettXXX
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2058242805.00007C44015B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2060887372.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/MrRio/jsPDF
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017826494.00007C4401C6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Pantura
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/acspike
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/chris-rock
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/deanm/omggif
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/diegocr
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/dollaruw
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/fjenett
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/foliojs/pdfkit/blob/master/lib/security.js
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017826494.00007C4401C6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/jamesbrobb
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/jmorel
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/juanpgaviria
Source: msedgewebview2.exe, 00000009.00000002.1787584538.00004B5000614000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/
Source: I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C6E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748699375.0000024343C38000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400EF0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767070645.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1768524684.00007C4402398000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775988532.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1779275334.00001AFC0099C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790448604.00004B50009A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1781299183.00000201851C7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT
Source: I8R24VDCOi.exe, 00000000.00000003.1760394206.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760422029.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012156883.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760947268.00007C4400DB8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858390761.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857564572.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760841396.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831240400.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1973408230.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/issues/185
Source: I8R24VDCOi.exe, 00000000.00000003.1760485089.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748594287.0000024343C78000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738809816.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738750299.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760514898.0000216C00324000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C77000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760542910.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1739230784.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1856584132.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2062978726.00007C4400FEC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/issues/54
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/release
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_Q
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_linux_x86_64.App
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB8000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB0000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_linux_x86_64.AppImage.tar.gz
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_macos_aarch64.app.tar.gzn
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_macos_aarch64.app.tar.gznC
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB8000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB0000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_macos_x86_64.app.tar.gz
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB8000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB0000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_windows_x86_64.msi.zip
Source: I8R24VDCOi.exe, 00000000.00000003.1755849373.0000024345D44000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345D44000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_windows_x86_64.msi.ziphHZUNL
Source: I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_windows_x86_64.msi.zipz
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB4000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts)
Source: I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738838959.0000216C0033C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760572172.0000216C0033C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1985952360.00007C4402314000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831398753.00007C4402314000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400EF0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1768524684.00007C4402398000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1761151099.00007C4402314000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/chat.js
Source: I8R24VDCOi.exe, 00000000.00000003.1760485089.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748594287.0000024343C78000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738809816.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738750299.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760514898.0000216C00324000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C77000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760542910.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1739230784.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1856584132.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2062978726.00007C4400FEC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/cmd.js
Source: I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C55000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738636921.0000216C00320000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746309694.0000216C00318000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746358511.0000216C00320000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746281921.0000216C0030C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748594287.0000024343C88000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C4E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738586299.0000216C00318000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704849226.0000024343C4E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C59000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749249393.0000024343C8A000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1932762189.00007C44028CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2011260687.00007C44013C4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400F10000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/core.js
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/dalle2.js
Source: I8R24VDCOi.exe, 00000000.00000003.1760394206.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760422029.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012156883.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760947268.00007C4400DB8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858390761.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857564572.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760841396.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831240400.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1973408230.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/export.js
Source: I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760456045.0000216C0038C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1755999446.0000024345C98000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857849003.00007C44025CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775988532.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2007580090.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1772743955.00004B5000730000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786211309.00004B5000284000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776000485.0000234800804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777215891.0000234800A04000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/markdown.export.js
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739027148.0000216C00320000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748699375.0000024343C38000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400EF0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1740195097.00007C440102C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858250598.00007C44026B0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/popup.core.js
Source: I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/popup.core.jsH
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lifof
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lsdriscoll
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/pablohess
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/rust-windowing/tao
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/stefslon
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760721524.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D59000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739085077.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C50000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C66000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704790070.0000024345D63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C5D000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704083076.0000024343C4D000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739053435.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704612509.0000024345D3E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D5F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704849226.0000024343C3F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C57000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760679045.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/tauri-apps/tauri/issues/2549#issuecomment-1250036908
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/w3c/csswg-drafts/issues/6939#issuecomment-1016679588
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/warrenweckesser
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/willowsystems
Source: msedgewebview2.exe, 0000000B.00000003.2010752345.0000234800B74000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1992968659.0000234800B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://hallenges-staging.cloudlare.com
Source: I8R24VDCOi.exe, 00000000.00000003.1748940948.0000024345DD2000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746907874.0000216C00754000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746817404.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C006E4000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749276207.0000024345CA3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747140767.0000216C0078C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747183905.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746723391.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2056734488.00007C4401584000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2020816491.00007C440174C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2014918827.00007C44014E8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1979034007.00007C440160C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1748488835.00007C440144C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://hertzen.com
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html.spec.whatwg.org/C/#the-details-and-summary-elements
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/rendering.html#flow-content-3
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/rendering.html#hidden-elements
Source: I8R24VDCOi.exe, 00000000.00000003.1748940948.0000024345DD2000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746907874.0000216C00754000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746817404.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C006E4000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749276207.0000024345CA3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747140767.0000216C0078C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747183905.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746723391.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2056734488.00007C4401584000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2020816491.00007C440174C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2014918827.00007C44014E8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1979034007.00007C440160C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1748488835.00007C440144C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html2canvas.hertzen.com
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int.msn.com/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int1.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int1.msn.com/
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/161903006
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/166809097
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/184850002
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/187425444
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/220069903
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/229267970
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/250706693
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/253522366
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/255411748
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/258207403
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/274859104
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/284462263
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/issues/166475273
Source: I8R24VDCOi.exe, 00000000.00000003.1760394206.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760422029.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012156883.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760947268.00007C4400DB8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858390761.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857564572.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760841396.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831240400.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1973408230.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://jsfiddle.net/xtraeme/x34ao9jp/13/
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://labs.openai.com
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://localhost.msn.com/
Source: msedgewebview2.exe, 00000002.00000003.1775142876.000002210F4D2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://login.windows.local
Source: msedgewebview2.exe, 00000002.00000003.1775142876.000002210F4D2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://login.windows.local/
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.cn/
Source: msedgewebview2.exe, 0000000E.00000002.2000885647.000057D400373000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.com/
Source: msedgewebview2.exe, 0000000E.00000002.1976124638.0000017600442000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1971793494.0000017600082000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://no-reply.private-token.research.cloudflare.com/requestID/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ntp.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ntp.msn.com/
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ntp.www.office.com/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://outlook.com/
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789311413.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1749232523.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1756381853.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1813938602.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1837131216.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1981353171.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2063156873.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1814531275.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1805525574.00006A38008DF000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1937629185.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1794897204.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1839196830.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016004232.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1952666333.000023480087B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://outlook.live.com/
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2018239308.000057D400978000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/AddSession
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/GetCheckConnectionInfo
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/ListAccounts?json=standard
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/Logout
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/MergeSession
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/OAuthLogin
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/RotateBoundCookies
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/chrome/blank.html
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/chrome/blank.htmlhttps://permanently-removed.invalid/LogoutYxABs
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/reauth/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/chrome/usermenu
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/kidsignin/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/kidsignup/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/v2/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/windows
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/xreauth/chrome
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/xreauth/chromehttps://permanently-removed.invalid/embed
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/encryption/unlock/desktop
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/encryption/unlock/desktop?kdi=CAIaDgoKY2hyb21lc3luYxAB
Source: msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/encryption/unlock/desktop?kdi=CAIaDgoKY2hyb21lc3luYxABKP
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/https://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2018239308.000057D400978000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/https://permanently-removed.invalid/https://permanently-removed.
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/o/oauth2/revoke
Source: msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/o/oauth2/revokehttps://permanently-removed.invalid/RotateBoundCo
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth/multilogin
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth2/v1/userinfo
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth2/v2/tokeninfo
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth2/v4/token
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/reauth/v1beta/users/
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/signin/chrome/sync?ssp=1
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/v1/issuetoken
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/v1/issuetokenhttps://permanently-removed.invalid/reauth/v1beta/u
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://raw.githubusercontent.com/lencx/ChatGPT/main/scripts/
Source: msedgewebview2.exe, 0000000E.00000002.2036646483.000057D400E0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://svgwg.org/svg2-draft/single-page.html#render-OverflowAndClipProperties
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tauri.app/docs/api/config#tauri.allowlist)
Source: msedgewebview2.exe, 0000000B.00000003.1945543839.000002E600702000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://tauri.app/v1/api/config/#securityconfig.dangerousremotedomainipcaccess
Source: I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://tauri.localhost/
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017826494.00007C4401C6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://webpjs.appspot.com
Source: msedgewebview2.exe, 0000000C.00000002.1847251058.0000503C0037C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2000885647.000057D400373000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://windows.msn.cn/
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://windows.msn.com/
Source: msedgewebview2.exe, 0000000E.00000002.2008656035.000057D4007C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com/products/turnstile/?utm_source=turnstile&utm_campaign=widget
Source: msedgewebview2.exe, 0000000E.00000003.1864531065.000057D400CA0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com/products/turnstile/?utm_source=turnstile&utm_campaign=widget~chlApiLangua
Source: msedgewebview2.exe, 0000000A.00000003.2006946826.0000036E000C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com?utm_source=challenge&utm_campaign=m
Source: msedgewebview2.exe, 0000000E.00000003.1864531065.000057D400CA0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com?utm_source=challenge&utm_campaign=~ALufD~content-type~input~GxJsd~Ykxht~h
Source: msedgewebview2.exe, 0000000B.00000003.1845928593.00002348010E8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com?utm_source=challenge&utm_campaign=~style~createObjectURL~FDsHE~CBqpP~UKSG
Source: msedgewebview2.exe, 0000000B.00000003.1994646124.0000234801A6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cludflare.com?utm_source=hallenge&utm_campaign=~uOQQ~YFsKP5~address_chaged~application/j
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cs.cmu.edu/~dst/Adobe/Gallery/anon21jul01-pdf-encryption.txt
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789311413.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1749232523.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1756381853.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1813938602.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1837131216.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1981353171.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2063156873.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1814531275.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1805525574.00006A38008DF000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1937629185.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1794897204.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1839196830.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016004232.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1952666333.000023480087B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.microsoftnews.cn/
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789311413.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1749232523.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1756381853.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1813938602.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1837131216.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1981353171.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2063156873.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1814531275.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1805525574.00006A38008DF000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1937629185.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1794897204.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1839196830.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016004232.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1952666333.000023480087B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.microsoftnews.com/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.msn.com/
Source: msedgewebview2.exe, 0000000C.00000002.1847251058.0000503C0037C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2000885647.000057D400373000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.staging-bing-int.com/
Source: msedgewebview2.exe, 0000000A.00000003.1802968365.00006A38009F0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1806282614.0000234800B30000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804365279.0000234800B28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://wwwcloudflare.com?utm_soure=challenge&utm_campaig=~style~createObjectURLFDsHE~CBqpP~UKSGi~fS

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49731 version: TLS 1.2

Installs a raw input device (often for capturing keystrokes)

Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp

Binary or memory string: RegisterRawInputDevices

memstr_5be5457f-a

Source: classification engine

Classification label: clean6.winEXE@28/181@12/9

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

File created: C:\Users\user\.chatgpt

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Mutant created: NULL

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

File created: C:\Users\user\AppData\Local\Temp\3db037e2-dc9d-40cc-ac31-4d9e85acc57a.tmp

Jump to behavior

Source: I8R24VDCOi.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

Key opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File read: C:\Windows\System32\drivers\etc\hosts			Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File read: C:\Windows\System32\drivers\etc\hosts			Jump to behavior

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: secur32.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dwmapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: explorerframe.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: fwpuclnt.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: textshaping.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: schannel.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dataexchange.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: d3d11.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dcomp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dxgi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: twinapi.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: edputil.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: mskeyprotect.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ncryptsslp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: cryptnet.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: twinapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.profile.platformdiagnosticsandusagedatasettings.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: policymanager.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kbdus.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.profile.platformdiagnosticsandusagedatasettings.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: policymanager.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wkscli.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mdmregistration.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mdmregistration.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: omadmapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dmcmnutils.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iri.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dsreg.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.ui.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windowmanagementapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: inputhost.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: twinapi.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: twinapi.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wtsapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winsta.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mscms.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coloradapterclient.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winhttp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.security.authentication.web.core.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iertutil.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: onecorecommonproxystub.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: devobj.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dataexchange.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dcomp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxgi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uiautomationcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: atlthunk.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: oleacc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: directmanipulation.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxgi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: resourcepolicyclient.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mf.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfplat.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rtworkq.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: hevcdecoder.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dolbydecmft.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfperfhelper.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwmapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d10warp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dcomp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: policymanager.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: vaultcli.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: aadwamextension.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.web.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: microsoftaccountwamextension.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: hevcdecoder.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: tenantrestrictionsplugin.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netprofm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: npmproxy.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msacm32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msdmo.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmmbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmmbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mmdevapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.userprofile.diagnosticssettings.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wevtapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: secur32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.diagnostics.telemetry.platformtelemetryclient.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: bitsproxy.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ncryptprov.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.storage.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxgi.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: resourcepolicyclient.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxcore.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mf.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfplat.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rtworkq.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: hevcdecoder.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dolbydecmft.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfperfhelper.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d12.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d12.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d12core.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d10warp.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxilconv.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3dscache.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: userenv.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: twinapi.appcore.dll

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InProcServer32

Jump to behavior

Source: I8R24VDCOi.exe

Static PE information: Virtual size of .text is bigger than: 0x100000

Source: I8R24VDCOi.exe

Static PE information: Image base 0x140000000 > 0x60000000

Source: I8R24VDCOi.exe

Static file information: File size 10587136 > 1048576

Source: I8R24VDCOi.exe	Static PE information: Raw size of .text is bigger than: 0x100000 < 0x4e3a00
Source: I8R24VDCOi.exe	Static PE information: Raw size of .rdata is bigger than: 0x100000 < 0x4d9a00

Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IMPORT
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_RESOURCE
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_BASERELOC
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IAT

Source: I8R24VDCOi.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: I8R24VDCOi.exe

Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG

Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IMPORT is in: .rdata
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_RESOURCE is in: .rsrc
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_BASERELOC is in: .reloc
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG is in: .rdata
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IAT is in: .rdata

PE file contains sections with non-standard names

Source: I8R24VDCOi.exe

Static PE information: section name: _RDATA

Uses code obfuscation techniques (call, push, ret)

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3190C96
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3190E25
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3190F41
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3191081
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC31911B1
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3191325
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC318DB12 push ecx; ret	14_2_00007FFDC318DB3F
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC318E6AC push ecx; ret	14_2_00007FFDC318E6D9
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E6D63 push edx; retf	14_2_00007FFDC31E6D64
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E3175 push esi; ret	14_2_00007FFDC31E3177
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E1BCB push esi; ret	14_2_00007FFDC31E1BCD
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E49DC push esi; ret	14_2_00007FFDC31E49DE
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E17DB push esi; ret	14_2_00007FFDC31E17DD
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E39AA push esi; ret	14_2_00007FFDC31E39AC
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E37A1 push esi; ret	14_2_00007FFDC31E37A3
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E25BC push esi; ret	14_2_00007FFDC31E25BE
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2006 push esi; ret	14_2_00007FFDC31E2008
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E300D push esi; ret	14_2_00007FFDC31E300F
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E3610 push esi; ret	14_2_00007FFDC31E3612
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E33F4 push esi; ret	14_2_00007FFDC31E33F6
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2A3E push esi; ret	14_2_00007FFDC31E2A40
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E7054 pushad ; iretd	14_2_00007FFDC31E7055
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E1E3A push esi; ret	14_2_00007FFDC31E1E3C
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2C89 push esi; ret	14_2_00007FFDC31E2C8B
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2282 push esi; ret	14_2_00007FFDC31E2284
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E247E push esi; ret	14_2_00007FFDC31E2480
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E1A8D push esi; ret	14_2_00007FFDC31E1A8F
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E567B push F6FFFFFFh; ret	14_2_00007FFDC31E5687
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2E78 push esi; ret	14_2_00007FFDC31E2E7A
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E28D9 push esi; ret	14_2_00007FFDC31E28DB
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E3AD3 push esi; ret	14_2_00007FFDC31E3AD5

Monitors certain registry keys / values for changes (often done to protect autostart functionality)

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Registry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\AutoUpdate	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Registry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX

Queries keyboard layouts

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Key opened: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Keyboard Layouts\d0010809

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\wasm FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\blob_storage\4230c95c-a28b-487e-a436-0143a82b46ea FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47 FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47 FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\Temp FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\Temp FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user FullSizeInformation

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\fa060d0f-39c1-4b0a-b653-5e7aa71261e2.tmp	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\	Jump to behavior

Source: I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAWlass%SystemRoot%\system32\mswsock.dllmatch(/.*language-(\w+)/)[1];
Source: I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAWh

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Process information queried: ProcessInformation

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

Memory allocated: page read and write | page guard

Jump to behavior

Creates a process in suspended mode (likely to inject code)

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=117.0.5938.132 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=117.0.2045.47 --initial-client-data=0x15c,0x160,0x164,0x138,0x16c,0x7ffdfb2e8e88,0x7ffdfb2e8e98,0x7ffdfb2e8ea8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1776 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:2	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2840 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:3	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-GB --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=3308 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --first-renderer-process --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5636010885 --mojo-platform-channel-handle=3552 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5637143084 --mojo-platform-channel-handle=4000 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5639600820 --mojo-platform-channel-handle=4116 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5640359025 --mojo-platform-channel-handle=4364 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5644726732 --mojo-platform-channel-handle=3900 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5646187664 --mojo-platform-channel-handle=3876 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5649044302 --mojo-platform-channel-handle=3892 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5663800043 --mojo-platform-channel-handle=4900 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=5208 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:2	Jump to behavior

Very long cmdline option found, this is very uncommon (may be encrypted or packed)

Queries the volume information (name, serial number etc) of a device

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\main.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\cmd.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\chat.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\popup.core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\main.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\popup.core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\export.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\markdown.export.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\cmd.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\chat.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\manifest.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\manifest.json VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\segoeui.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\Trust Protection Lists\manifest.json VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\WidevineCdm\manifest.json VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\seguisb.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\segoeuib.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\System32\spool\drivers\color\sRGB Color Space Profile.icm VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cour.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cour.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\couri.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\couri.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\MEIPreload\preloaded_data.pb VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cambria.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cambria.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\l_10646.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\l_10646.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahoma.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahoma.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahomabd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahomabd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\micross.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\micross.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\pala.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\pala.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palai.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palab.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palab.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palabi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palabi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\msgothic.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\msgothic.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunsl.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunsl.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgun.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgun.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\SCT Auditing Pending Reports VolumeInformation	Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.64.155.209	chatgpt.com	United States	13335	CLOUDFLARENETUS	false
162.159.61.3	chrome.cloudflare-dns.com	United States	13335	CLOUDFLARENETUS	false
185.199.108.133	raw.githubusercontent.com	Netherlands	54113	FASTLYUS	false
104.18.94.41	unknown	United States	13335	CLOUDFLARENETUS	false
204.79.197.239	unknown	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
185.199.109.153	lencx.github.io	Netherlands	54113	FASTLYUS	false
104.18.95.41	unknown	United States	13335	CLOUDFLARENETUS	false
172.64.41.3	unknown	United States	13335	CLOUDFLARENETUS	false

Contacted Domains

Name	IP	Active
chatgpt.com	172.64.155.209	true
chrome.cloudflare-dns.com	162.159.61.3	true
a.nel.cloudflare.com	35.190.80.1	true
raw.githubusercontent.com	185.199.108.133	true
lencx.github.io	185.199.109.153	true
chat.openai.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://chatgpt.com/	false	unknown
https://chatgpt.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2728ba4c86f	false	unknown
https://chatgpt.com/favicon.ico	false	unknown
https://chatgpt.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2f4cd0c8788	false	unknown

Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49731 version: TLS 1.2

Source: I8R24VDCOi.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\fa060d0f-39c1-4b0a-b653-5e7aa71261e2.tmp	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\	Jump to behavior

HTTP GET or POST without a user agent

Source: global traffic

HTTP traffic detected: GET /lencx/ChatGPT/main/scripts/manifest.json HTTP/1.1accept: */*host: raw.githubusercontent.com

IP address seen in connection with other malware

Source: Joe Sandbox View	IP Address: 162.159.61.3 162.159.61.3
Source: Joe Sandbox View	IP Address: 185.199.108.133 185.199.108.133
Source: Joe Sandbox View	IP Address: 185.199.108.133 185.199.108.133
Source: Joe Sandbox View	IP Address: 104.18.94.41 104.18.94.41

JA3 SSL client fingerprint seen in connection with other malware

Source: Joe Sandbox View

JA3 fingerprint: 3b5074b1b5d032e5620f69f9f700ff0e

Uses a known web browser user agent for HTTP communication

Source: global traffic	HTTP traffic detected: OPTIONS /report/v4?s=AV6wXoXwDiFa2kAZAebAMJt%2BTSlB3xS0XrY%2FGLd8wAnU7YsZ%2Fo6%2F97SrMSN%2FcKc0D4ciXoI%2BeFr99NoPlXrZcVlvOqSHzvKjKakolcYLTBKlFN4hA5mTeQt08Bj%2BbTU5BQ%3D%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveOrigin: https://chat.openai.comAccess-Control-Request-Method: POSTAccess-Control-Request-Headers: content-typeUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2728ba4c86f HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OWlVE8SPcNBU.4PYac3.CvmFdPDNrnMWud3IPRv2r_k-1729772045-1.0.1.1-FaJ15L4rrWPMnphtUskDPUMNkVYePEnoZLSvDxWCI3UAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=sdHBg6oF4H6FWxQ60X.5uZVt6GdFGgW512xlAXuvvIk-1729772045-1.0.1.1-UckP2AiJT2n5xudaqhGVxhSavJQwoe38qCHkxcPijBK0X3f2tPoC_bu0LHj8Suz0I5H_pdE4EUnJAsWaGRSrKQ
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2774d442cde HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OMNPTxa5dcbdWDC5zF10_TTA4FAlFeYFzZm.zKDL9MY-1729772045-1.0.1.1-oGUTHZxBlovQ_gIL5xQ1jaizOH9wXBLvxoJ_1YkF2p4Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2728ba4c86f/Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7O HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4576User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1CF-Challenge: Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7OContent-type: application/x-www-form-urlencodedAccept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=PYa1QMaEAlNq8AXCZuYgo17lZguigSB142jsoN54yjA-1729772047-1.0.1.1-NXX.Lfh2DS0RB2OrlPcc6VrP3TisYFyDxW9FNDoGM9_HcK7f7_ypBkc5Ujem28EaOoCadx7umKyLOZxcOAxrDg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=PYa1QMaEAlNq8AXCZuYgo17lZguigSB142jsoN54yjA-1729772047-1.0.1.1-NXX.Lfh2DS0RB2OrlPcc6VrP3TisYFyDxW9FNDoGM9_HcK7f7_ypBkc5Ujem28EaOoCadx7umKyLOZxcOAxrDg
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveOrigin: https://chatgpt.comUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/t722o/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2774d442cde/ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjN HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4598sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjNsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2774d442cde/ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjN HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 5934sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: ZvH6QH227xOm5Ypb_BANPrzG896Lp.qTZdiJPOQCE7U-1729772045-1.2.1.1-8Lu7RgPxI8Fv.3y7IFtMSEJBYFkeLP29_l0T7jWjXNEKAd9BRbPidx9nG9EW5OjNsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=ysrGvPmqhbqYx9hKvni415uvjO__4.xgdhrK.8AeKR0-1729772056-1.0.1.1-8bWYXZaq.ASgU.3ns_xLGRgw.nJpRbCVD3gnD_eHFkoSW2C_5IZScKae9.mTVh1vW8K3WRS2L8wAGhX1Kj.lVA
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iTGVq9XUJ0ETrABYlg4qWlIqm4k/8d79e2728ba4c86f/Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7O HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 5583User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1CF-Challenge: Bf6z6i3aZvmXsh67IRrDkjru2Pn7kPeG3VRRQ9wYEBc-1729772045-1.2.1.1-AI0RlJhjkb4IECuBan0tbsoSM9D5SbozubHBKHccN023GGR2kPZuzNrzloT7IO7OContent-type: application/x-www-form-urlencodedAccept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=ysrGvPmqhbqYx9hKvni415uvjO__4.xgdhrK.8AeKR0-1729772056-1.0.1.1-8bWYXZaq.ASgU.3ns_xLGRgw.nJpRbCVD3gnD_eHFkoSW2C_5IZScKae9.mTVh1vW8K3WRS2L8wAGhX1Kj.lVA
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2f4cd0c8788 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=20txOQoVK95DoG_CQ5q6KcdMzflGfLsefy9rSRUI7iQ-1729772066-1.0.1.1-JFT1zQYUZnxXGuH4WMSvA1_NdrKhV2efJk2vSu0zPD0Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDcmxvg4IT5wiF0B2zJ5KAeT8R8/8d79e2f4cd0c8788/2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0q HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4601sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0qsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e300ee17ddae HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=8w9J9mNtfC6DhGfX8eRBt9XolDvbcfnCdeO8A7tCHUA-1729772067-1.0.1.1-MiHQPsyxieke70xcRzUl5l3hWeQrwMZQRg18duMpcgMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDcmxvg4IT5wiF0B2zJ5KAeT8R8/8d79e300ee17ddae/aQO6uSl8y3ViDGoOFfVtp9_9o74X77o_dW7pR9QUBig-1729772067-1.2.1.1-rpQKt5NL_ixqyaczBylL4cNNx1TyZkCmaCXTkznmW7NJZpjOPGwN20vTXUQWR7S0 HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4577User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1CF-Challenge: aQO6uSl8y3ViDGoOFfVtp9_9o74X77o_dW7pR9QUBig-1729772067-1.2.1.1-rpQKt5NL_ixqyaczBylL4cNNx1TyZkCmaCXTkznmW7NJZpjOPGwN20vTXUQWR7S0Content-type: application/x-www-form-urlencodedAccept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDcmxvg4IT5wiF0B2zJ5KAeT8R8/8d79e2f4cd0c8788/2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0q HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 5760sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 2xkr6zQwIkKrPVFmvDzbUoc4QPjOE0zHNdxAaQIUhI4-1729772066-1.2.1.1-jQNbQPmiZFHVEAQU0G1rz97qSdhiiPh4TRv0aVWRlF0HBddiUrdhcLDyqnBQAJ0qsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8d79e36a9d700b76 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=EKnr2Edcj6ZkF4pygKDOGjVV6HATs.idxv5FCSbsCFo-1729772084-1.0.1.1-EZnBSw_.oM3HtwH5C5xr5cLkdO8sOD.j5sNd_MbjkxMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1274467767:1729768387:GZ03pNqdcvUyWi3tepVr5CneT2FTszG4NLRECEWjr3U/8d79e36a9d700b76/4rRr1xNn6FwY4ykYht78o1BBXfW68JsrOtAEo9iwHmg-1729772084-1.2.1.1-RT7MAMKq2U2V57BqkjG9u9lVXrrDkaCXEGYzzlcXHfOJFzVwDiiOCHaodXharcBz HTTP/1.1Host: chatgpt.comConnection: keep-aliveContent-Length: 4553sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 4rRr1xNn6FwY4ykYht78o1BBXfW68JsrOtAEo9iwHmg-1729772084-1.2.1.1-RT7MAMKq2U2V57BqkjG9u9lVXrrDkaCXEGYzzlcXHfOJFzVwDiiOCHaodXharcBzsec-ch-ua-platform: "Windows"Accept: /Origin: https://chatgpt.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: POST /componentupdater/api/v1/update?cup2key=6:zA-fqe23Zjma7QQvbkpD4CPvwbGWRIk97MMdoDIOR7w&cup2hreq=b625a8f99262a396d9fbb0706e4777b338edb793d786e234d6b4532962ef3d58 HTTP/1.1Host: edge.microsoft.comConnection: keep-aliveContent-Length: 4921X-Microsoft-Update-AppId: oankkpibpaokgecfckkdkgaoafllipag,kpfehajjjbbcifeehjgfgnabifknmdad,ohckeflnhegojcjlcpbfpciadgikcohk,fppmbhmldokgmleojlplaaodlkibgikh,ndikpojcjlepofdkaaldkinkjbeeebkl,fgbafbciocncjfbbonhocjaohoknlaco,ahmaebgpfccdhgidjaidaoojjcijckba,ojblfafjmiikbkepnnolpgbbhejhlcim,alpjnmnfbgfkmmpcfpejmmoebdndedno,jbfaflocpnkhbgcijpkiafdpbjkedane,eeobbhfgfagbclfofmgbdfoicabjdbknX-Microsoft-Update-Interactivity: bgX-Microsoft-Update-Service-Cohort: 3521X-Microsoft-Update-Updater: msedge-117.0.2045.47Content-Type: application/jsonSec-Mesh-Client-Edge-Version: 117.0.2045.47Sec-Mesh-Client-Edge-Channel: stableSec-Mesh-Client-OS: WindowsSec-Mesh-Client-OS-Version: 10.0.19045Sec-Mesh-Client-Arch: x86_64Sec-Mesh-Client-WebView: 1X-Client-Data: COrjygE=Sec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, br
Source: global traffic	HTTP traffic detected: OPTIONS /report/v4?s=3V7tZg8DupBWa%2Ff7S9JM8GFtlRid9dl3Bd35rdFUGaO%2BBiZk%2BKOR78XEahTbWD9%2BIghfA%2F63sNGZv9p%2ByZXnARv2Cm5zxa8K1sT6TPQCdCvn6pPPt%2FSD05VoJUqk HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveOrigin: https://chatgpt.comAccess-Control-Request-Method: POSTAccess-Control-Request-Headers: content-typeUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8

Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.95.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41
Source: unknown	TCP traffic detected without corresponding DNS query: 104.18.94.41

Source: global traffic	HTTP traffic detected: GET /ChatGPT/install.json HTTP/1.1accept: application/jsonconnection: closeaccept-encoding: gzip, deflateuser-agent: attohttpc/0.22.0host: lencx.github.io
Source: global traffic	HTTP traffic detected: GET /lencx/ChatGPT/main/scripts/manifest.json HTTP/1.1accept: /host: raw.githubusercontent.com
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2728ba4c86f HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OWlVE8SPcNBU.4PYac3.CvmFdPDNrnMWud3IPRv2r_k-1729772045-1.0.1.1-FaJ15L4rrWPMnphtUskDPUMNkVYePEnoZLSvDxWCI3UAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=sdHBg6oF4H6FWxQ60X.5uZVt6GdFGgW512xlAXuvvIk-1729772045-1.0.1.1-UckP2AiJT2n5xudaqhGVxhSavJQwoe38qCHkxcPijBK0X3f2tPoC_bu0LHj8Suz0I5H_pdE4EUnJAsWaGRSrKQ
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2774d442cde HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=OMNPTxa5dcbdWDC5zF10_TTA4FAlFeYFzZm.zKDL9MY-1729772045-1.0.1.1-oGUTHZxBlovQ_gIL5xQ1jaizOH9wXBLvxoJ_1YkF2p4Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=oJoiX1NMYw6DM_ZM10iV7_U6hTYQdoaWYs_uOT9BO6Q-1729772045-1.0.1.1-Hi.Ef6VnqbNV0f6LNqlxcUCvkKrrA8_EeBgr1r5yrlAfwT4_lyZXY1IyQeOWdq10DNyC4sCh3837wjg7Vxiz4Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=PYa1QMaEAlNq8AXCZuYgo17lZguigSB142jsoN54yjA-1729772047-1.0.1.1-NXX.Lfh2DS0RB2OrlPcc6VrP3TisYFyDxW9FNDoGM9_HcK7f7_ypBkc5Ujem28EaOoCadx7umKyLOZxcOAxrDg
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveOrigin: https://chatgpt.comUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/t722o/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=OQLIkE0UQBS.6z7PZMBm77fwe7cCsT7LkxFFMdDohsc-1729772049-1.0.1.1-wDshRlzskOLKjeCH9yiHP2U0OHy.z1eAe_r213OIjoP0mG39ECCixjcG4Ptq2I.xEWMO.wVaj7yVnc1rKDeubw
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e2f4cd0c8788 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=20txOQoVK95DoG_CQ5q6KcdMzflGfLsefy9rSRUI7iQ-1729772066-1.0.1.1-JFT1zQYUZnxXGuH4WMSvA1_NdrKhV2efJk2vSu0zPD0Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=h6QED80bYekZchG851gHvOE6zYYRfWLK9yqva63qtPU-1729772062-1.0.1.1-267CL1OpoTxN3FngsAh8qNaK2Q5Cle6PJJtSxSsR3gOIsdQ_pMWs1kaOcVNwe2UFtr8cdpJmpLeMfSaaVMs3tg; cf_chl_rc_m=2
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e300ee17ddae HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=8w9J9mNtfC6DhGfX8eRBt9XolDvbcfnCdeO8A7tCHUA-1729772067-1.0.1.1-MiHQPsyxieke70xcRzUl5l3hWeQrwMZQRg18duMpcgMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: cf_chl_rc_m=2; __cf_bm=x_8nAfA8agM_jc9AVuOnIvKN5Qfjpse_HUIsiSmcTjU-1729772067-1.0.1.1-oi9k25cL6mTcxA9p1hxOBX7ownA4ggjyuQ50V34YrBypsa5sdqrkUmPavdlrj0dOcISbQYPxqWW6sist52XFcg
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: chatgpt.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8d79e36a9d700b76 HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://chatgpt.com/?__cf_chl_rt_tk=EKnr2Edcj6ZkF4pygKDOGjVV6HATs.idxv5FCSbsCFo-1729772084-1.0.1.1-EZnBSw_.oM3HtwH5C5xr5cLkdO8sOD.j5sNd_MbjkxMAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: chatgpt.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117", "Microsoft Edge WebView2";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.2045.47"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132", "Microsoft Edge WebView2";v="117.0.2045.47"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chatgpt.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: __cf_bm=cI4pbl9fadRAB9hak6.ok0tUSnANbu0oAqisaUDJ8oI-1729772075-1.0.1.1-bFKmL1M2ve3jNiJsDSXJ6BiVUVAwAuEvg9qflnjYWwQ5NCewRO91PRKpv6xvvEi4U22IOKgwEbRjhhnWiafeVA; cf_chl_rc_m=3

Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.cn/https://rewards.microsoft.com/https://www.microsoftnews.com/https://www.facebook.com/www.staging-bing-int.comaction.getBadgeTextColorhttps://outlook.live.com/https://rewards.bing.com/https://www.microsoftnews.cn/translatorserp.bing.comhttps://translator.bing.com/manifest:action equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00874000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.cn/https://rewards.microsoft.com/https://www.microsoftnews.com/https://www.facebook.com/www.staging-bing-int.comaction.getBadgeTextColorhttps://outlook.live.com/https://rewards.bing.com/https://www.microsoftnews.cn/*translatorserp.bing.commanifest:browser_action equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://rewards.microsoft.com/https://www.microsoftnews.com/https://www.facebook.com/www.staging-bing-int.comaction.getBadgeTextColorhttps://outlook.live.com/https://rewards.bing.com/https://www.microsoftnews.cn/translatorserp.bing.comhttps://translator.bing.com/*manifest:action equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.facebook.com/* equals www.facebook.com (Facebook)
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: www.facebook.com equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: raw.githubusercontent.com
Source: global traffic	DNS traffic detected: DNS query: lencx.github.io
Source: global traffic	DNS traffic detected: DNS query: chat.openai.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: chatgpt.com
Source: global traffic	DNS traffic detected: DNS query: chrome.cloudflare-dns.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:05 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9088Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:05 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9195Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:07 GMTContent-Type: text/html; charset=UTF-8Content-Length: 10478Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:09 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:12 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9569Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:16 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9249Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:26 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9642Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:27 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9344Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:28 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:30 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9313Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:32 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9292Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:35 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9591Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:44 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9621Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:46 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Oct 2024 12:14:48 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9612Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()X-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge

Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/1423136
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2162
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2517
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2970
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3078
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3205
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3206
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3452
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3498
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3502
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3577
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3584
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3586
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3623
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3624
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3625
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3832
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3862
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3965
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3970
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4324
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4384
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4405
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4428
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4551
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4633
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4722
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4836
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4901
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4937
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5007
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5055
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5061
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5281
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5371
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5375
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5421
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5430
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5535
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5658
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5750
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5881
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5901
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5906
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6041
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6048
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6141
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6248
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6439
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6651
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6692
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6755
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6860
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6876
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6878
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6929
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6953
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7036
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7047
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7172
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7279
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7370
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7406
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7488
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7553
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7556
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7724
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731603070.000073FC00154000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7760
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7761
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8162
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8215
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8229
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8280
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://c.pki.goog/r/gsr1.crl0
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://c.pki.goog/r/r4.crl0
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://c.pki.goog/we1/R7LgAnKD4Lk.crl0
Source: msedgewebview2.exe, 0000000A.00000003.1802968365.00006A38009F0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1806282614.0000234800B30000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804365279.0000234800B28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://challenges.cloudflar.com/turnstile/v0/~nNEv~cLt~dFDjq~NAIph~ppgxp~ntrd~QtkSf~IdlHB~dSXgi~AjJb
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://chat.openai.com/
Source: msedgewebview2.exe, 00000008.00000002.1772684218.00001AFC0028C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786252225.00004B500028C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821479664.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846186065.0000503C0028C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1820993138.0000503C00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1839921267.000057D4006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1839211956.000057D400694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1839411341.000057D4006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crrev.com/c/2555698.
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://i.pki.goog/gsr1.crt0-
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://i.pki.goog/r4.crt0
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://i.pki.goog/we1.crt0A
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://issuetracker.google.com/200067929
Source: I8R24VDCOi.exe, 00000000.00000003.1704732916.0000024345D3C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760721524.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704732916.0000024345D39000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739085077.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704655122.0000024345D3A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C66000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704790070.0000024345D63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C48000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739053435.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D5F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704849226.0000024343C3F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760679045.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012363893.00007C44012F8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://jaywcjlove.github.io/hotkeys
Source: msedgewebview2.exe, 0000000E.00000002.2036646483.000057D400E0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://lists.w3.org/Archives/Public/public-svg-wg/2008JulSep/0347.html
Source: msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1850962455.00006CAC00438000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://o.pki.goog/s/we1/Bmk0%
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://opensource.org/licenses/mit-license
Source: msedgewebview2.exe, 0000000E.00000002.2018239308.000057D400978000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/https://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/v1/accountcapabilities:batchGet
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://permanently-removed.invalid/v1/accountcapabilities:batchGethttps://permanently-removed.invali
Source: msedgewebview2.exe, 0000000E.00000003.1869073304.000057D40078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.fpdf.org/en/script/script37.php
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.myersdaily.org/joseph/javascript/md5.js
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.phpied.com/rgb-color-parser-in-javascript/
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2058242805.00007C44015B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2060887372.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.yworks.com
Source: msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871754042.000057D400B28000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871297301.000057D400B08000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://wwww3.org/2000/svg~jExMT~YiJe~Xcamz~tXayg~requesturnstileResults~
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/4830
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/4966
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/5845
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/6574
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7161
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7162
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7246
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7308
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731618986.000073FC00164000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7319
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7320
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7369
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731658560.000073FC00184000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731642896.000073FC00178000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7382
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7489
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7604
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7714
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7847
Source: msedgewebview2.exe, 00000002.00000003.1737759021.00007C4400F1C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1735981689.00007C4400DC4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731754935.000073FC001A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7899
Source: msedgewebview2.exe, 00000009.00000003.1759030203.00004B5000E7C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1869374465.000057D400D4C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/pdfobject/2.1.1/pdfobject.min.js
Source: msedgewebview2.exe, 0000000B.00000003.1994646124.0000234801A6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chalenges.cloudflare.com/tunstile/v0/~BhMzQ~charAtgqWdW0~auIQt~jkaZY~KWFj~cRay~zkJjx~flex~JC
Source: msedgewebview2.exe, 0000000B.00000003.2060634859.00002348010D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges-staging.cloudflare.com
Source: msedgewebview2.exe, 0000000A.00000003.2016079331.00006A38010BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2016769558.00006A38010C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges-stging.cloudflare.com
Source: msedgewebview2.exe, 00000006.00000003.2009457662.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudfl
Source: msedgewebview2.exe, 0000000E.00000002.1993293333.000057D400238000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com
Source: msedgewebview2.exe, 0000000E.00000002.2002905272.000057D40065C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/574d0e21-42e1-473e-9075-8701e4d77dbe
Source: msedgewebview2.exe, 0000000E.00000002.2005792754.000057D400718000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/ad748dc4-a1bc-4bb8-843c-7d558ae2b953
Source: msedgewebview2.exe, 0000000E.00000002.1993293333.000057D400238000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1
Source: msedgewebview2.exe, 0000000E.00000002.2005792754.000057D400718000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1a
Source: msedgewebview2.exe, 00000006.00000003.2008782160.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1895393915.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008143550.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2006382579.000057D40074C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1937375013.000057D401F55000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2053790954.000057D401FEC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1449939122:1729702709:uPA6
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ay=8d79e2982
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d79
Source: msedgewebview2.exe, 0000000E.00000002.1999483596.000057D4002DC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d792982
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1877913111.000057D400B28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d79e298
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8d79e2a7
Source: msedgewebview2.exe, 0000000E.00000002.2044241908.000057D401E52000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1993293333.000057D400238000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998160424.000057D40028C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/71fm5/0
Source: msedgewebview2.exe, 0000000E.00000002.1998160424.000057D40028C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/t722o/0
Source: msedgewebview2.exe, 00000002.00000003.2035491750.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tdjl9/0
Source: msedgewebview2.exe, 0000000E.00000002.1976124638.0000017600802000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit
Source: msedgewebview2.exe, 0000000A.00000003.2006946826.0000036E000C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicit5
Source: msedgewebview2.exe, 00000002.00000003.2010755038.00007C4402A64000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2007919575.00007C4402A44000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2010425017.00007C4402A74000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2010596739.00007C44013CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2008280451.00007C44012DC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2009263855.00007C4402A34000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2010049191.00006A38013EC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2010211364.00006A3800E68000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008D0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009610159.00006A380141C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2010428156.00006A380129C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987505274.0000234800A9C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987074436.0000234801AF8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987179056.0000234801AE8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1986865251.000023480086C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1987412262.0000234801478000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2060634859.00002348010D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/g/f2bbd6738e15/api.js?onload=fSZI2&render=explicitaDb
Source: msedgewebview2.exe, 0000000B.00000003.1845928593.00002348010E8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/~nNEvE~cLt~dFDjq~NAIph~ppgxp~Hntrd~QtkSf~IdlHB~dSXgi~
Source: msedgewebview2.exe, 0000000E.00000002.1976124638.0000017600282000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.com5EF8AE74674958E1E29E59F8762B744C
Source: msedgewebview2.exe, 0000000E.00000002.1973884400.00000176001C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.comA872D276C863E280F343B2B82F337928
Source: msedgewebview2.exe, 0000000E.00000002.2002905272.000057D40065C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.comA872D276C863E280F343B2B82F337928a)
Source: msedgewebview2.exe, 0000000E.00000002.2047730627.000057D401F14000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflare.comdlerukm.mojom.UkmRecorderInterface
Source: msedgewebview2.exe, 00000006.00000003.2009457662.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://challenges.cloudflre.com/
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706344899.0000024343CA5000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748549375.0000024343CA2000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748699375.0000024343C38000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com
Source: I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1803204721.00007C440242C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772623177.00007C440242C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772597009.00007C44005B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829959849.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1803172044.00007C44005B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1803899706.00007C4400F70000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1871213536.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1856439662.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1789640257.00006CAC0011C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1780369782.00006A380082C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1989905166.00002348003B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C59000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/4
Source: I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/Ctrl
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/Just
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/R
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://chat.openai.com/a
Source: msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2009695159.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2009695159.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2045080087.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060F000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008782160.00006CAC00120000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813818090.00006CAC001AB000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2009457662.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1820612855.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848166981.00006CAC00424000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813941609.00006CAC0042C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1819137114.00006CAC0041C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848102403.00006CAC00428000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2052244026.00006CAC0042C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1814053490.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com
Source: msedgewebview2.exe, 0000000E.00000002.1959660669.0000016D1ADE7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/
Source: msedgewebview2.exe, 00000002.00000003.2010213550.00007C44013F0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2081278119.00006A38010A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2003062297.00006A38013A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2072657471.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2059503225.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2066320612.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2021151842.00002348012E8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1967219071.0000234800CE4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1975389350.0000234801A2C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1973422712.0000234801222000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/(
Source: msedgewebview2.exe, 0000000A.00000003.2057723069.00006A3800B02000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/63ebe155-3532-44fd-be66-a30d2958c46f
Source: msedgewebview2.exe, 0000000B.00000003.1946035046.000002E600B42000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/6cd9228f-9052-4c37-96fa-fcbdab4bfb6d
Source: msedgewebview2.exe, 0000000A.00000003.2017318459.00006A3800B04000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/?__cf_chl_rt_tk=8w9J9mNtfC6DhGfX8eRBt9XolDvbcfnCdeO8A7tCHUA-1729772067-1.0.1.1-M
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/?__cf_chl_rt_tk=OMNPTxa5dcbdWDC5zF10_TTA4FAlFeYFzZm.zKDL9MY-1729772045-1.0.1.1-o
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/?__cf_chl_rt_tk=OWlVE8SPcNBU.4PYac3.CvmFdPDNrnMWud3IPRv2r_k-1729772045-1.0.1.1-F
Source: msedgewebview2.exe, 00000002.00000003.1872488758.00007C4400C94000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/Just
Source: msedgewebview2.exe, 0000000B.00000003.1989905166.00002348003B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/Report-To:
Source: msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829850323.00007C4400297000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1986083817.00007C4400294000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1828799314.00007C4402538000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1829645081.00007C440060F000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813818090.00006CAC001AB000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848005938.00006CAC00434000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1820612855.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848166981.00006CAC00424000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813941609.00006CAC0042C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1848102403.00006CAC00428000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1814053490.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1847937240.00006CAC00460000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2035401877.00006CAC00378000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008782160.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1895393915.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.1813818090.00006CAC001A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000006.00000003.2008143550.00006CAC00124000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1835861336.00006A3800F5F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1625211542:1729702664:ZO1Pl1MsCdl5JCd-iT
Source: msedgewebview2.exe, 0000000A.00000003.2052235382.00006A3800ADE000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-41
Source: msedgewebview2.exe, 0000000A.00000003.2017318459.00006A3800B04000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2066320612.00006A38010A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2038808362.0000234800CA4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2083275643.0000234800CA4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2009808433.0000234800CD6000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2076671172.0000234801548000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016289815.0000234801338000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/flow/ov1/292910351:1729702615:K3nzjQK0cRG2v-46QDc
Source: msedgewebview2.exe, 0000000A.00000003.2070386278.00006A38010F4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8d79e300ee17ddae
Source: msedgewebview2.exe, 0000000A.00000003.2017318459.00006A3800B04000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/e3c6b8ce-fd30-4198-a0b2-c7dd34aa8257
Source: msedgewebview2.exe, 00000002.00000003.1856678237.00007C440264C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1830577977.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1842037284.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2007580090.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1871213536.00007C4400FAC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1805684165.0000234800AB6000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/favicon.ico
Source: msedgewebview2.exe, 0000000B.00000003.1805684165.0000234800AB6000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com/favicon.icohttps://chatgpt.com/favicon.ico8(
Source: msedgewebview2.exe, 0000000A.00000003.2006946826.0000036E000C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chatgpt.com5
Source: msedgewebview2.exe, 0000000E.00000002.1994781361.000057D400264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstore
Source: msedgewebview2.exe, 00000009.00000002.1786141195.00004B5000264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstoreP
Source: msedgewebview2.exe, 00000008.00000002.1772571547.00001AFC00264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstorePI8
Source: msedgewebview2.exe, 00000008.00000002.1772571547.00001AFC00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786141195.00004B5000264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1845958344.0000503C00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1994781361.000057D400264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromewebstore.google.com/
Source: msedgewebview2.exe, 00000008.00000002.1772571547.00001AFC00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786141195.00004B5000264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1845958344.0000503C00264000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1994781361.000057D400264000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromewebstore.google.com/6EAED1924DB611B6EEF2A664BD077BE7EAD33B8F4EB74897CB187C7633357C2FE8
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://docs.rs/getrandom#nodejs-es-module-supportCalling
Source: msedgewebview2.exe, 0000000B.00000003.1945543839.000002E600702000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.rs/tauri/1/tauri/scope/struct.IpcScope.html#method.configure_remote_access
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://docs.rs/tauri/1/tauri/scope/struct.IpcScope.html#method.configure_remote_accessO
Source: msedgewebview2.exe, 0000000A.00000003.1802968365.00006A38009F0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.rs/tauri/1/tauri/scope/struct.IpcScope.html#method.configure_remote_accessj8
Source: msedgewebview2.exe, 0000000E.00000002.2036646483.000057D400E0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drafts.csswg.org/css-color-adjust-1/#forced-colors-properties
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00883000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://easyauth.edgebrowser.microsoft-falcon.io/
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00883000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://easyauth.edgebrowser.microsoft-staging-falcon.io/
Source: msedgewebview2.exe, 0000000C.00000002.1849691539.0000503C00883000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://easyauth.edgebrowser.microsoft-testing-falcon.io/
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Flamenco
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Gavvers
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/HackbrettXXX
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2058242805.00007C44015B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2060887372.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/MrRio/jsPDF
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017826494.00007C4401C6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/Pantura
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/acspike
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/chris-rock
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/deanm/omggif
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/diegocr
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/dollaruw
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/fjenett
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/foliojs/pdfkit/blob/master/lib/security.js
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017826494.00007C4401C6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/jamesbrobb
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/jmorel
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/juanpgaviria
Source: msedgewebview2.exe, 00000009.00000002.1787584538.00004B5000614000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/
Source: I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C6E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748699375.0000024343C38000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400EF0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767070645.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1768524684.00007C4402398000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775988532.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1779275334.00001AFC0099C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790448604.00004B50009A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1781299183.00000201851C7000.00000004.10000000.00040000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT
Source: I8R24VDCOi.exe, 00000000.00000003.1760394206.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760422029.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012156883.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760947268.00007C4400DB8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858390761.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857564572.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760841396.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831240400.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1973408230.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/issues/185
Source: I8R24VDCOi.exe, 00000000.00000003.1760485089.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748594287.0000024343C78000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738809816.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738750299.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760514898.0000216C00324000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C77000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760542910.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1739230784.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1856584132.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2062978726.00007C4400FEC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/issues/54
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/release
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_Q
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_linux_x86_64.App
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB8000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB0000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_linux_x86_64.AppImage.tar.gz
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_macos_aarch64.app.tar.gzn
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_macos_aarch64.app.tar.gznC
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB8000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB0000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_macos_x86_64.app.tar.gz
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB8000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB0000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_windows_x86_64.msi.zip
Source: I8R24VDCOi.exe, 00000000.00000003.1755849373.0000024345D44000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345D44000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_windows_x86_64.msi.ziphHZUNL
Source: I8R24VDCOi.exe, 00000000.00000003.1749153857.0000024345D8E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/releases/download/v1.1.0/ChatGPT_1.1.0_windows_x86_64.msi.zipz
Source: I8R24VDCOi.exe, 00000000.00000003.1747544593.0000024345DB4000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts)
Source: I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738838959.0000216C0033C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760572172.0000216C0033C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1985952360.00007C4402314000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831398753.00007C4402314000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400EF0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1768524684.00007C4402398000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1761151099.00007C4402314000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/chat.js
Source: I8R24VDCOi.exe, 00000000.00000003.1760485089.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748594287.0000024343C78000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738809816.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738750299.0000216C0034C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760514898.0000216C00324000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C77000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760542910.0000216C00354000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1739230784.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1856584132.00007C440060C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2062978726.00007C4400FEC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/cmd.js
Source: I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C55000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738636921.0000216C00320000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746309694.0000216C00318000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746358511.0000216C00320000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746281921.0000216C0030C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748594287.0000024343C88000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C4E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1738586299.0000216C00318000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704849226.0000024343C4E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C59000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749249393.0000024343C8A000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1932762189.00007C44028CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2011260687.00007C44013C4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400F10000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/core.js
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/dalle2.js
Source: I8R24VDCOi.exe, 00000000.00000003.1760394206.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760422029.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012156883.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760947268.00007C4400DB8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858390761.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857564572.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760841396.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831240400.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1973408230.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/export.js
Source: I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760456045.0000216C0038C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1755999446.0000024345C98000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857849003.00007C44025CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775988532.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2007580090.00007C440255C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1772743955.00004B5000730000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786211309.00004B5000284000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776000485.0000234800804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777215891.0000234800A04000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/markdown.export.js
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739027148.0000216C00320000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1748699375.0000024343C38000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772368109.00007C4402438000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772495053.00007C440240C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772661503.00007C4400EF0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1740195097.00007C440102C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858250598.00007C44026B0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775639917.00007C4402804000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/popup.core.js
Source: I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lencx/ChatGPT/tree/main/scripts/popup.core.jsH
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lifof
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lsdriscoll
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/pablohess
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/rust-windowing/tao
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/stefslon
Source: I8R24VDCOi.exe, 00000000.00000003.1748253318.0000024343C31000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760721524.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D59000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739085077.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C50000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704249172.0000024343C66000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704790070.0000024345D63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C5D000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704083076.0000024343C4D000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C63000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1739053435.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704612509.0000024345D3E000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D5F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704849226.0000024343C3F000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703945377.0000024343C57000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760679045.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704454549.0000024345D51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1767118507.00007C4402380000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/tauri-apps/tauri/issues/2549#issuecomment-1250036908
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/w3c/csswg-drafts/issues/6939#issuecomment-1016679588
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/warrenweckesser
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1862949768.00007C4401674000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/willowsystems
Source: msedgewebview2.exe, 0000000B.00000003.2010752345.0000234800B74000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1992968659.0000234800B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://hallenges-staging.cloudlare.com
Source: I8R24VDCOi.exe, 00000000.00000003.1748940948.0000024345DD2000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746907874.0000216C00754000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746817404.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C006E4000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749276207.0000024345CA3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747140767.0000216C0078C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747183905.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746723391.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2056734488.00007C4401584000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2020816491.00007C440174C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2014918827.00007C44014E8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1979034007.00007C440160C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1748488835.00007C440144C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://hertzen.com
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html.spec.whatwg.org/C/#the-details-and-summary-elements
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/rendering.html#flow-content-3
Source: msedgewebview2.exe, 00000008.00000003.1737898546.00001AFC003BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1737228239.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736505514.00001AFC006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000003.1736408915.00001AFC00694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745426723.00004B50003AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743784283.00004B50006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743513119.00004B5000694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1743563487.00004B50006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767877771.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767654996.00006A3800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1767712441.00006A38006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1768357109.00006A380085C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776582239.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1777604272.00002348003E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776406346.00002348006A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.0000234800694000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1776334530.00002348006AC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000003.1821164869.0000503C006AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/rendering.html#hidden-elements
Source: I8R24VDCOi.exe, 00000000.00000003.1748940948.0000024345DD2000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746907874.0000216C00754000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746817404.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C006E4000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749276207.0000024345CA3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747140767.0000216C0078C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747183905.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746723391.0000216C006AC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1746990445.0000216C0071C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2056734488.00007C4401584000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2020816491.00007C440174C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2014918827.00007C44014E8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1979034007.00007C440160C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1748488835.00007C440144C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://html2canvas.hertzen.com
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int.msn.com/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int1.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://int1.msn.com/
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/161903006
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/166809097
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/184850002
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/187425444
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/220069903
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/229267970
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/250706693
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/253522366
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/255411748
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/258207403
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/274859104
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/284462263
Source: msedgewebview2.exe, 00000005.00000003.1731701830.000073FC001B8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/issues/166475273
Source: I8R24VDCOi.exe, 00000000.00000003.1760394206.0000216C0035C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704691262.0000024343C5A000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1760422029.0000216C0036C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747831195.0000024343C20000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1703872872.0000024343C19000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1778471419.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2012156883.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1775809723.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773615460.00007C4402368000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760947268.00007C4400DB8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1773662339.00007C44024A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1858390761.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772799612.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1857564572.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760841396.00007C4400690000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1831240400.00007C4402308000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1973408230.00007C44022E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://jsfiddle.net/xtraeme/x34ao9jp/13/
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://labs.openai.com
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://localhost.msn.com/
Source: msedgewebview2.exe, 00000002.00000003.1775142876.000002210F4D2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://login.windows.local
Source: msedgewebview2.exe, 00000002.00000003.1775142876.000002210F4D2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://login.windows.local/
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.cn/
Source: msedgewebview2.exe, 0000000E.00000002.2000885647.000057D400373000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://microsoftstart.msn.com/
Source: msedgewebview2.exe, 0000000E.00000002.1976124638.0000017600442000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1971793494.0000017600082000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://no-reply.private-token.research.cloudflare.com/requestID/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ntp.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776199283.00001AFC008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789376629.00004B50008BC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1849963028.0000503C0089C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ntp.msn.com/
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ntp.www.office.com/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://outlook.com/
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789311413.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1749232523.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1756381853.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1813938602.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1837131216.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1981353171.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2063156873.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1814531275.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1805525574.00006A38008DF000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1937629185.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1794897204.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1839196830.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016004232.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1952666333.000023480087B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://outlook.live.com/
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2018239308.000057D400978000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/AddSession
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/GetCheckConnectionInfo
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/ListAccounts?json=standard
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/Logout
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/MergeSession
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/OAuthLogin
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/RotateBoundCookies
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/chrome/blank.html
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/chrome/blank.htmlhttps://permanently-removed.invalid/LogoutYxABs
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/reauth/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/chrome/usermenu
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/kidsignin/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/kidsignup/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/v2/chromeos
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/setup/windows
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/xreauth/chrome
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/embedded/xreauth/chromehttps://permanently-removed.invalid/embed
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/encryption/unlock/desktop
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/encryption/unlock/desktop?kdi=CAIaDgoKY2hyb21lc3luYxAB
Source: msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/encryption/unlock/desktop?kdi=CAIaDgoKY2hyb21lc3luYxABKP
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/https://permanently-removed.invalid/
Source: msedgewebview2.exe, 00000008.00000002.1779173482.00001AFC00980000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2018239308.000057D400978000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/https://permanently-removed.invalid/https://permanently-removed.
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/o/oauth2/revoke
Source: msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/o/oauth2/revokehttps://permanently-removed.invalid/RotateBoundCo
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth/multilogin
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth2/v1/userinfo
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth2/v2/tokeninfo
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/oauth2/v4/token
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/reauth/v1beta/users/
Source: msedgewebview2.exe, 00000008.00000002.1772531187.00001AFC00248000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786051128.00004B5000248000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/signin/chrome/sync?ssp=1
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/v1/issuetoken
Source: msedgewebview2.exe, 00000008.00000002.1779438930.00001AFC009B8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1790369256.00004B5000988000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000003.1871028901.000057D400AFC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2026560348.000057D400B00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://permanently-removed.invalid/v1/issuetokenhttps://permanently-removed.invalid/reauth/v1beta/u
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://raw.githubusercontent.com/lencx/ChatGPT/main/scripts/
Source: msedgewebview2.exe, 0000000E.00000002.2036646483.000057D400E0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://svgwg.org/svg2-draft/single-page.html#render-OverflowAndClipProperties
Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tauri.app/docs/api/config#tauri.allowlist)
Source: msedgewebview2.exe, 0000000B.00000003.1945543839.000002E600702000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://tauri.app/v1/api/config/#securityconfig.dangerousremotedomainipcaccess
Source: I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://tauri.localhost/
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747225787.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2019066149.00007C4400804000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017826494.00007C4401C6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://webpjs.appspot.com
Source: msedgewebview2.exe, 0000000C.00000002.1847251058.0000503C0037C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2000885647.000057D400373000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://windows.msn.cn/
Source: msedgewebview2.exe, 0000000E.00000003.1861652465.000057D4008B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://windows.msn.com/
Source: msedgewebview2.exe, 0000000E.00000002.2008656035.000057D4007C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com/products/turnstile/?utm_source=turnstile&utm_campaign=widget
Source: msedgewebview2.exe, 0000000E.00000003.1864531065.000057D400CA0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com/products/turnstile/?utm_source=turnstile&utm_campaign=widget~chlApiLangua
Source: msedgewebview2.exe, 0000000A.00000003.2006946826.0000036E000C2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com?utm_source=challenge&utm_campaign=m
Source: msedgewebview2.exe, 0000000E.00000003.1864531065.000057D400CA0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com?utm_source=challenge&utm_campaign=~ALufD~content-type~input~GxJsd~Ykxht~h
Source: msedgewebview2.exe, 0000000B.00000003.1845928593.00002348010E8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cloudflare.com?utm_source=challenge&utm_campaign=~style~createObjectURL~FDsHE~CBqpP~UKSG
Source: msedgewebview2.exe, 0000000B.00000003.1994646124.0000234801A6C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cludflare.com?utm_source=hallenge&utm_campaign=~uOQQ~YFsKP5~address_chaged~application/j
Source: I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345E03000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750612321.0000216C00A0C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00A6C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751293957.0000216C00B8C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749893972.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750375244.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp, I8R24VDCOi.exe, 00000000.00000003.1749737841.0000024345CAB000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747364623.0000024345DD3000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1751294262.0000024345E5C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750131532.0000216C00ACC000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1750268104.0000216C00B2C000.00000004.00000800.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1705410513.0000024345CA9000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1704997020.0000024345C51000.00000004.00000020.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2017128558.00007C4401A6C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.2023762949.00007C440220C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1772991172.00007C4402604000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1755740421.00007C4401E0C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760089922.00007C4401CCC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1760229903.00007C44020CC000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000002.00000003.1863741937.00007C440200C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.cs.cmu.edu/~dst/Adobe/Gallery/anon21jul01-pdf-encryption.txt
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789311413.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1749232523.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1756381853.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1813938602.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1837131216.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1981353171.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2063156873.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1814531275.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1805525574.00006A38008DF000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1937629185.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1794897204.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1839196830.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016004232.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1952666333.000023480087B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.microsoftnews.cn/
Source: msedgewebview2.exe, 00000008.00000003.1738274183.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000008.00000002.1776074254.00001AFC008A0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1745832104.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1789311413.00004B50008A4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1749232523.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000003.1756381853.00004B5000894000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1813938602.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1837131216.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2009035456.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1981353171.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.2063156873.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1814531275.00006A38008E4000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1805525574.00006A38008DF000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1937629185.00006A38008E2000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000A.00000003.1794897204.00006A38008E0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804650926.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1853726164.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1974438974.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1839196830.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.2016004232.000023480087C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1952666333.000023480087B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.microsoftnews.com/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.msn.cn/
Source: msedgewebview2.exe, 00000008.00000002.1772769738.00001AFC002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 00000009.00000002.1786405657.00004B50002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000C.00000002.1846280085.0000503C002A8000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.1998846771.000057D4002A8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.msn.com/
Source: msedgewebview2.exe, 0000000C.00000002.1847251058.0000503C0037C000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000E.00000002.2000885647.000057D400373000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.staging-bing-int.com/
Source: msedgewebview2.exe, 0000000A.00000003.1802968365.00006A38009F0000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1806282614.0000234800B30000.00000004.00000800.00020000.00000000.sdmp, msedgewebview2.exe, 0000000B.00000003.1804365279.0000234800B28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://wwwcloudflare.com?utm_soure=challenge&utm_campaig=~style~createObjectURLFDsHE~CBqpP~UKSGi~fS

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49731 version: TLS 1.2

Installs a raw input device (often for capturing keystrokes)

Source: I8R24VDCOi.exe, 00000000.00000000.1701252284.00007FF7DFFDA000.00000002.00000001.01000000.00000003.sdmp

Binary or memory string: RegisterRawInputDevices

memstr_5be5457f-a

Source: classification engine

Classification label: clean6.winEXE@28/181@12/9

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

File created: C:\Users\user\.chatgpt

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Mutant created: NULL

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

File created: C:\Users\user\AppData\Local\Temp\3db037e2-dc9d-40cc-ac31-4d9e85acc57a.tmp

Jump to behavior

Source: I8R24VDCOi.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

Key opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File read: C:\Windows\System32\drivers\etc\hosts			Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File read: C:\Windows\System32\drivers\etc\hosts			Jump to behavior

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: secur32.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dwmapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: explorerframe.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: fwpuclnt.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: textshaping.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: schannel.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dataexchange.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: d3d11.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dcomp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dxgi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: twinapi.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: edputil.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: mskeyprotect.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: ncryptsslp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: cryptnet.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Section loaded: twinapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.profile.platformdiagnosticsandusagedatasettings.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: policymanager.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kbdus.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.profile.platformdiagnosticsandusagedatasettings.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: policymanager.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wkscli.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mdmregistration.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mdmregistration.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: omadmapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dmcmnutils.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iri.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dsreg.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.ui.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windowmanagementapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: inputhost.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: twinapi.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: twinapi.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wtsapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winsta.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mscms.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: coloradapterclient.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winhttp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.security.authentication.web.core.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iertutil.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: onecorecommonproxystub.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: devobj.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dataexchange.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dcomp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxgi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uiautomationcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: atlthunk.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: oleacc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: directmanipulation.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxgi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: resourcepolicyclient.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mf.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfplat.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rtworkq.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: hevcdecoder.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dolbydecmft.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfperfhelper.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwmapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d10warp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dcomp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: policymanager.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msvcp110_win.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: vaultcli.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: aadwamextension.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.web.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: microsoftaccountwamextension.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: hevcdecoder.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: tenantrestrictionsplugin.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netprofm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: npmproxy.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msacm32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: msdmo.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmmbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmmbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mmdevapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.userprofile.diagnosticssettings.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dwrite.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wevtapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: secur32.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.system.diagnostics.telemetry.platformtelemetryclient.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: bitsproxy.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: ncryptprov.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: winmm.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: kernel.appcore.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: uxtheme.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: windows.storage.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: wldp.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: profapi.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxgi.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: resourcepolicyclient.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d11.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxcore.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: cryptbase.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mf.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfplat.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: rtworkq.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: hevcdecoder.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dolbydecmft.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: mfperfhelper.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d12.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d12.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d12core.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3d10warp.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: dxilconv.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: d3dscache.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: userenv.dll
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Section loaded: twinapi.appcore.dll

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InProcServer32

Jump to behavior

Source: I8R24VDCOi.exe

Static PE information: Virtual size of .text is bigger than: 0x100000

Source: I8R24VDCOi.exe

Static PE information: Image base 0x140000000 > 0x60000000

Source: I8R24VDCOi.exe

Static file information: File size 10587136 > 1048576

Source: I8R24VDCOi.exe	Static PE information: Raw size of .text is bigger than: 0x100000 < 0x4e3a00
Source: I8R24VDCOi.exe	Static PE information: Raw size of .rdata is bigger than: 0x100000 < 0x4d9a00

Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IMPORT
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_RESOURCE
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_BASERELOC
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
Source: I8R24VDCOi.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IAT

Source: I8R24VDCOi.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: I8R24VDCOi.exe

Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG

Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IMPORT is in: .rdata
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_RESOURCE is in: .rsrc
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_BASERELOC is in: .reloc
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG is in: .rdata
Source: I8R24VDCOi.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IAT is in: .rdata

PE file contains sections with non-standard names

Source: I8R24VDCOi.exe

Static PE information: section name: _RDATA

Uses code obfuscation techniques (call, push, ret)

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3190C96
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3190E25
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3190F41
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3191081
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC31911B1
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC3190AD9 push edx; ret	14_2_00007FFDC3191325
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC318DB12 push ecx; ret	14_2_00007FFDC318DB3F
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC318E6AC push ecx; ret	14_2_00007FFDC318E6D9
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E6D63 push edx; retf	14_2_00007FFDC31E6D64
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E3175 push esi; ret	14_2_00007FFDC31E3177
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E1BCB push esi; ret	14_2_00007FFDC31E1BCD
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E49DC push esi; ret	14_2_00007FFDC31E49DE
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E17DB push esi; ret	14_2_00007FFDC31E17DD
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E39AA push esi; ret	14_2_00007FFDC31E39AC
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E37A1 push esi; ret	14_2_00007FFDC31E37A3
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E25BC push esi; ret	14_2_00007FFDC31E25BE
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2006 push esi; ret	14_2_00007FFDC31E2008
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E300D push esi; ret	14_2_00007FFDC31E300F
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E3610 push esi; ret	14_2_00007FFDC31E3612
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E33F4 push esi; ret	14_2_00007FFDC31E33F6
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2A3E push esi; ret	14_2_00007FFDC31E2A40
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E7054 pushad ; iretd	14_2_00007FFDC31E7055
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E1E3A push esi; ret	14_2_00007FFDC31E1E3C
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2C89 push esi; ret	14_2_00007FFDC31E2C8B
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2282 push esi; ret	14_2_00007FFDC31E2284
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E247E push esi; ret	14_2_00007FFDC31E2480
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E1A8D push esi; ret	14_2_00007FFDC31E1A8F
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E567B push F6FFFFFFh; ret	14_2_00007FFDC31E5687
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E2E78 push esi; ret	14_2_00007FFDC31E2E7A
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E28D9 push esi; ret	14_2_00007FFDC31E28DB
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Code function: 14_2_00007FFDC31E3AD3 push esi; ret	14_2_00007FFDC31E3AD5

Monitors certain registry keys / values for changes (often done to protect autostart functionality)

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Registry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\AutoUpdate	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Registry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Registry key monitored for changes: HKEY_CURRENT_USER_Classes	Jump to behavior

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX

Queries keyboard layouts

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Key opened: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Keyboard Layouts\d0010809

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\wasm FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\blob_storage\4230c95c-a28b-487e-a436-0143a82b46ea FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data FullSizeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47 FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47 FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\Temp FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user\AppData\Local\Temp FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user FullSizeInformation
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File Volume queried: C:\Users\user FullSizeInformation

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\fa060d0f-39c1-4b0a-b653-5e7aa71261e2.tmp	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	File opened: C:\Users\user\	Jump to behavior

Source: I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp, I8R24VDCOi.exe, 00000000.00000003.1747791460.0000024343C90000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAWlass%SystemRoot%\system32\mswsock.dllmatch(/.*language-(\w+)/)[1];
Source: I8R24VDCOi.exe, 00000000.00000003.1706104098.0000024343C8C000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAWh

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Process information queried: ProcessInformation

Source: C:\Users\user\Desktop\I8R24VDCOi.exe

Memory allocated: page read and write | page guard

Jump to behavior

Creates a process in suspended mode (likely to inject code)

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=117.0.5938.132 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=117.0.2045.47 --initial-client-data=0x15c,0x160,0x164,0x138,0x16c,0x7ffdfb2e8e88,0x7ffdfb2e8e98,0x7ffdfb2e8ea8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1776 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:2	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2840 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:3	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-GB --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=3308 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --first-renderer-process --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5636010885 --mojo-platform-channel-handle=3552 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5637143084 --mojo-platform-channel-handle=4000 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5639600820 --mojo-platform-channel-handle=4116 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5640359025 --mojo-platform-channel-handle=4364 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5644726732 --mojo-platform-channel-handle=3900 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5646187664 --mojo-platform-channel-handle=3876 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5649044302 --mojo-platform-channel-handle=3892 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --disable-nacl --disable-gpu-compositing --lang=en-GB --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=en_CH" --time-ticks-at-unix-epoch=-1729766404493892 --launch-time-ticks=5663800043 --mojo-platform-channel-handle=4900 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:1	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Process created: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe "C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --noerrdialogs --user-data-dir="C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView" --webview-exe-name=I8R24VDCOi.exe --webview-exe-version=1.1.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=5208 --field-trial-handle=1780,i,11054171514797172,5936391161486530060,262144 --enable-features=MojoIpcz --disable-features=msPdfOOUI,msSmartScreenProtection,msWebOOUI /prefetch:2	Jump to behavior

Very long cmdline option found, this is very uncommon (may be encrypted or packed)

Queries the volume information (name, serial number etc) of a device

Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\chat.conf.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\main.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\cmd.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\chat.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\popup.core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\main.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\popup.core.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\export.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\markdown.export.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\cmd.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\chat.js VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\manifest.json VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\I8R24VDCOi.exe	Queries volume information: C:\Users\user\.chatgpt\scripts\manifest.json VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\segoeui.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\Trust Protection Lists\manifest.json VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\WidevineCdm\manifest.json VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\seguisb.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\segoeuib.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\System32\spool\drivers\color\sRGB Color Space Profile.icm VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\timesbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cour.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cour.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\couri.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\couri.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\courbi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\MEIPreload\preloaded_data.pb VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0 VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cambria.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\cambria.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\l_10646.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\l_10646.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahoma.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahoma.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahomabd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\tahomabd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\micross.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\micross.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\pala.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\pala.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palai.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palab.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palab.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palabi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\palabi.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\msgothic.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\msgothic.ttc VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunsl.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunsl.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgun.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgun.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\Fonts\malgunbd.ttf VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe	Queries volume information: C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\SCT Auditing Pending Reports VolumeInformation	Jump to behavior

Source: C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

ID:	1541157
Product:	CloudBasic
Start time:	14:13:00
Start date:	24.10.2024
Sample:	I8R24VDCOi
Cookbook:	default.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	b5cd3cbe8995dfc01f035b107322db51
SHA1:	6e3c5f5597966cff1e50c43970281b70b31534e3
SHA256:	9c28d8da7a38029e84dda55e3509399ca89655731a6cb275ff59b3fd13fd4649
Filetype:	Win64 Executable GUI (202006/5) 92.65%

Name	Type	MD5	SHA1	SHA256
C:\Users\user\.chatgpt\ChatGPT.log	ASCII text	5D262E562F7E50005CBCAC62F305CFC6	ADD1B0CADAB6E110C836B51FBEFE100CF8543451	6F0B797E3FF9130FD62D97D893561A222094EDB799C4B871B39678B8046A03AF
C:\Users\user\.chatgpt\cache_prompts\chatgpt_prompts.json	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\.chatgpt\chat.conf.json	JSON data	7272EF6272CAC225057F57023DFC49EB	6D56860BE0CC846A251EC1BEA84DD295D0BACBA1	8DDCFB68519B7222B44BED5C9ACD3CE9D93A3D1C6CCAE4D8AD8BE429E982B659
C:\Users\user\.chatgpt\chat.download.json	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\.chatgpt\chat.notes.json	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\.chatgpt\scripts\README.md	ASCII text, with CRLF line terminators	15DB8C93A5D44B253D2574D7D6B5110E	41ACD3B7BBE0399A15AF5F0FA61B3ABC46B82AC3	9A145AACC5F0D5D0B2FDE5442A780E9DBE859A1AFE2EF8BE466D40E24681DC97
C:\Users\user\.chatgpt\scripts\chat.js	ASCII text, with very long lines (2231), with CRLF line terminators	7603F8DD49031A1307BBA8230811A7A1	637CE61C965FAE3C06D00D7355982E413354E24B	631AAFF39948648C107C1FFECDA9D7D8B0435A42965A24944C91E477E7E264EF
C:\Users\user\.chatgpt\scripts\cmd.js	ASCII text, with CRLF line terminators	ADE8F0EB7A927D3CB6A4808BFD9EB160	04D45758CA6BCED16D6B6346CA35158B7543A09C	A3EF4E2711CB4A6852FC37038C40FBB8DF9CE03D8F5079A2246B1ABBD16FEB22
C:\Users\user\.chatgpt\scripts\core.js	Unicode text, UTF-8 text, with CRLF line terminators	996AC8A2FDEF00893F0D645B838A7D73	84D75825A416D0B0E8DB9F5E28D189D196D4D3BD	D1252B488A02EE299AAC554865B6B0776CE297469B3CCE38FFFE6935F8D3CA1A
C:\Users\user\.chatgpt\scripts\dalle2.js	ASCII text, with CRLF line terminators	9869A2F32CF936586F4A6ECA890C250F	D0816CD2CBB51B81DF6B25E6EFBE939069685D91	122CAAE70E045D48B0C2071DB0306B14199653FD7E9E214E817DB131C795F345
C:\Users\user\.chatgpt\scripts\export.js	ASCII text, with very long lines (2908), with CRLF line terminators	B19CE4ADF1B79E9C4CBBC8D2340B3F5B	0371349B4FD13E6C099C482A82B55631820A1B7A	DE3AF6879929BD2C087AFEB29EA7353DEB474A0AD8434C131FF80A269C3D4DED
C:\Users\user\.chatgpt\scripts\main.js	ASCII text, with CRLF line terminators	720B209FB3826D0541E2D1BC33E4B6DF	77742186158CB19792EC637EE8AF4128A7E33F69	0CF666199C5CF3CD8CE0177C96FDF3D420EAC92D940FD6969C36CDFAED528E0A
C:\Users\user\.chatgpt\scripts\manifest.json	JSON data	281556EE1880182A909ACEB9D9D14F86	471098D411560E4793045C147BB05482AC4EC1F4	E5CA4E443EC2208F04B2E9204470412582FAAD89928DA22F016E0E2C5AE5E1B3
C:\Users\user\.chatgpt\scripts\markdown.export.js	ASCII text, with CRLF line terminators	513D8D45CC2EEC20BC4CAD64B44140B1	15F161C852007FDC1CFF1191A1F5AA881A3BF2E8	731AAB6C664B593EB3C0BA41B7F4AC9A83DFA4BD76AB3FFD5488872C71B4B803
C:\Users\user\.chatgpt\scripts\popup.core.js	Unicode text, UTF-8 text, with CRLF line terminators	776940B16B88E6B256E42E0998A86167	0A534BA3EA2B5348AAE9D159C08736943F7A6DA6	DC40D4A06185B57C44A3A841D72DAB33868D3FFFFFF8F0DD377B5EFD99521670
C:\Users\user\AppData\Local\D3DSCache\ab326b5a64fa2db7\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx	data	F82406D91DAD32A842033CE56EA73522	4864C2D6780FF0F8211C4A561EE90F76AE2840E0	CF1AE0AB6FEB70464C9305F3355383B901CCBF0810F335ED5EA2FEB822C46638
C:\Users\user\AppData\Local\D3DSCache\ab326b5a64fa2db7\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock	ASCII text, with no line terminators	F49655F856ACB8884CC0ACE29216F511	CB0F1F87EC0455EC349AAA950C600475AC7B7B6B	7852FCE59C67DDF1D6B8B997EAA1ADFAC004A9F3A91C37295DE9223674011FBA
C:\Users\user\AppData\Local\D3DSCache\ab326b5a64fa2db7\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val	Matlab v4 mat-file (little endian) (, numeric, rows 0, columns 16, imaginary	16D388D094ECDC534C83C4403965A9F4	F18AC7E0A3D71E92B794DCE0A3832A119A45A4B7	A982B3BE404EBC13123D18E30EF704FA7860379DFD77FE6C0427A43931D6FBC6
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\5a2a7058cf8d1e56c20e6b19a7c48eb2386d141b.tbres	data	B39333E71775BA5C7DAA350FF91EDC14	B8140B4A9BA62A3CB32B8A6AFD41B9B1FF7B26A9	8F24FD20A8314C5E485871BF578AB0AD77F5D2E9828600239120C135340648F9
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\e8ddd4cbd9c0504aace6ef7a13fa20d04fd52408.tbres	data	E6A9E414F1D82847E03F8C794C3510BE	31AA7D38657926586DF310CFE9FCC4E1D0DABC36	81521738C5106A92A6B56B1572E21F674F0E9166E57381CD8ACD9C792039BD30
C:\Users\user\AppData\Local\Temp\03cae1d6-8b56-47dc-b05a-f73cbbaa7f2d.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 97037	5C9D8FB20E8E6DA81D61E871570DEDC8	4F751781E7729879A07FFBA2937B513B8AC153BB	94B21C35E4BD49EFBE822EC2A5CD530D52555A964D27DA830D470C4EB51142E3
C:\Users\user\AppData\Local\Temp\119b4322-f4ec-476b-af2d-3bbc9d71c03c.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 12263	B4581A88FEE2F8887502D8FE05EB45CE	EC164671BCC7DD58516AA81A3C06702756CCF2BC	48BD04D75104A22D72B87339B0814CF4A05CBB4EEF783663654F666C8E6F8A34
C:\Users\user\AppData\Local\Temp\7f1093c5-920d-4d11-95af-5771e495047b.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 97037	DEE62CD8A81106998930A3B2DB5DD7A2	C766F48AA64E6990DF0423D91B27A4B69F7F964D	16F3DA2972DED14AFC1E7A0DFE9B45BB953544ECE674339805D61B55A12B2C77
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\09863751-f302-4dc3-bf39-7fcba32b30f5.tmp	JSON data	45A1A734F535DC8C4037AB3763CA0DE1	2B24C0FFCF30B2004ED7BBAB4ABB0C4743FCD774	8D68AF2CD46D24A0529D6610364B6C7B962510894AA6202C1CF4377D6138EE36
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\191909b0-2fb2-43be-9ee6-bdf94060a027.tmp	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\51d1d927-b610-49da-98a6-5fb7a7a50164.tmp	JSON data	7624253136F6DDB88B508AE81593D9CD	5B00F015A1CF07C19835EAEB9B74A8727257B6FC	DED9E44B0EFB0262A305DC50AF2C2231DB9AF172098BAAA438B5C051DA0A8169
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\53ea1179-c3da-4592-8fa6-bebded2677c7.tmp	JSON data	0362D458E68620CFA8D76F696D9DC380	7223DCD196E7E8C1183F53DAF39020ED5CAC422A	184E1783B3C32EA1F807B326FC8ED1D1DE7A53759B7C607E0E9CB66BAA65A3CB
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\7c8e5b8f-8e68-4d5b-a771-3c8d6a2d0e84.tmp	JSON data	60041470087D783101D2805A28ADE744	06F4F1B10760E073E6E44C2ACA40DDAAF17FAB19	67E7309764B3F8A0EC05E9BF69389BF5032689C8851199F94FABC0EBC9343A7E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\8f13e579-af85-420e-9ddc-ee3c5a04288a.tmp	JSON data	34B73FC011D6F48CFC5A84F787505F79	380DFBF5E8DFA2B1D39C054A84B5E62103B22DCC	2C736438DD1DAA6048FB92C6B846D44FCCA6CEA7E53222B12AA0F1FDDC19A7E9
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\BrowserMetrics-spare.pma (copy)	data	1045BFD216AE1AE480DD0EF626F5FF39	377E869BC123602E9B568816B76BE600ED03DBD0	439292E489A0A35E4A3A0FE304EA1A680337243FA53B135AA9310881E1D7E078
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\BrowserMetrics-spare.pma.tmp	data	1045BFD216AE1AE480DD0EF626F5FF39	377E869BC123602E9B568816B76BE600ED03DBD0	439292E489A0A35E4A3A0FE304EA1A680337243FA53B135AA9310881E1D7E078
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\BrowserMetrics\BrowserMetrics-671A3A06-13D8.pma	DIY-Thermocam raw data (Lepton 3.x), scale 0-0, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset -0.000000, slope 9671407709838538004496384.000000	E24E6E39FAAD4ED87D60CBFC818AA350	BCF5AA722693765C9B07A49BFB22A3C53DEB8744	AB7BEBABBDFB15B368331323697DF31377EB6BE4D0BA317A855F306C08E7225F
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Crashpad\settings.dat	data	4C62F10E635E13B6B93BD1BA0D8DAE47	FE9D6B33CFACD218FD089D5C86D52F6C467D9AED	C8C34F6B4801C1FA46D4C63B4884148B31B125055BB41D9610E11DE4DBB72433
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Crashpad\throttle_store.dat	ASCII text	9E4E94633B73F4A7680240A0FFD6CD2C	E68E02453CE22736169A56FDB59043D33668368F	41C91A9C93D76295746A149DCE7EBB3B9EE2CB551D84365FFF108E59A61CC304
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\26eeb842-8541-45df-8726-775b07b034cf.tmp	JSON data	AE8532E3AB4D177CF37F646CEAB4788B	B891EBF6507D286841EBC033B1B5E08306413EC0	BF0AA8C33013BB59477B94436E6CDB17B9B9D7701DD5FF4A622FA7C3EDEB6C56
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\44403739-dc66-4d6d-8c29-9fd947a30d43.tmp	JSON data	679E13BDFB44CFA038F4D9046B7C74F0	3074CA8D5D4619D2709A1538CF3A985A3B34997A	EF191890DB4E8B6DFFAEFA232479F6FA6FFFAE921426B643534961DBF5A904DB
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\845e788d-24be-4fd0-a8f5-9adfeb7f7ca4.tmp	JSON data	2B18D9D73A43F407EA08797DF7DD037E	4B9027B11157F44C9783F27E34BCD8EB5E029565	53A62A326986794E0FDE42B6881A336969EAEB266A8A77A53BC1198E4FED89CC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\97dbb791-59bf-4375-8c73-e06865d7560a.tmp	JSON data	5DE771BE7E45F5C03D88A64D09BEF4F6	8FE8312EDC69698E06759FC29B70F6D241EE2D4C	51F326E06D6C53BC9298223CCE68A1BD559C63149201ACCAB860C6FB1DC552A9
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\AssistanceHome\AssistanceHomeSQLite	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 3, cookie 0x1, schema 4, UTF-8, version-valid-for 1	40B18EC43DB334E7B3F6295C7626F28D	0E46584B0E0A9703C6B2EC1D246F41E63AF2296F	85E961767239E90A361FB6AA0A3FD9DAA57CAAF9E30599BB70124F1954B751C8
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data\data_0	data	382734025E27A74FB4A038F9626172A9	12009A7389F6863EC7CC3FFF95B91152BA1C9DB5	E5A63C7F0E7FD289580590A1407704CDF784771AB316A9D1B6A621505A501D07
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data\data_1	data	D3D8B5E54F674DD9DCB24597411EBB08	210C07AFB5472BEC17EF70576391891DEFFA5397	417F47B221DFAA31CCD57106095825AC99AC387607C4DCE18E50DF93D754C887
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data\data_2	data	F29857B75870DA90A1ADCC23641B6BAF	4E204B1D752F15EF941324F4A5E3697F636DE98B	1B3D16EEB16B60196D3E331EBAD17318E26798AD193FBCB4646BE29CBE8E188B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data\data_3	data	38A499838418E892EF7980CB8E6786AD	5FD0633A3BD3944FA3AEC60D4490C30ADDB01E67	2080A030D2E82CB9354F4337BB92D3F133B7FDF0721C4C215120B5034D3D151D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data\f_000001	ASCII text, with very long lines (47531)	808A57CAE0B6FEE71F46EFDDED44B348	DD570A24C8BDA1B391AA1DDEA6004125818E579A	5B75AC6F98994352699841DFFA6E562725EBBD0005C539946AD3625EC550EB0F
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Cache\Cache_Data\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	79597737724AD9595473AA046A7B1878	9ADAAE01687C8C4687AE3A5B99815C10A7EC07FA	3DF7E92C14B4BB71D6F95DB6AB0EC944B9151E18388554422A33BB30244A814C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\22990d116c87bf14_0	data	5C8C2EACA0BD794555C2451309805E9E	3DC6262083DFBD551A170E8D3DF65752C5FD5D91	88EC3E7552CA665748BFE136DFA64C538E6A7AB3A811C830201470939C6BED05
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\3e5cc537916605f1_0	data	D12F68751D2616DED655C805F46A029B	3B86D2ACA81DD0BF89CDCF3DF926F946CEF80E4B	578E6AF6D877EEDC31D30EA84D98CF9BAC31C6554261BC84CCC666501F82180D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\4a5b386ed6a0e900_0	data	5A935D9658081FFC3A22702403063D56	1A8E7748CB506B02FE953A5DB5400FE18A35D2FA	B0AE7D62709C62514CE1E7B7D40F10FC8AE6C8644C0F7C567107765F8A48491E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\508198b7e418eb01_0	data	1B903C1E4422F5F23430AD297160037E	1DDDCD58F0E3AB3FAF1004EA76672F6FF467C930	15EDA42F916CA6A420A01E24C261C3B971A5003BCE6918C1B30E97F5D95CC95F
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\59f6ba9d88b5be33_0	data	7CEF360604F1EBF132E853D9EE670596	638A106D90B0CF332BA18CCD9C18870039F26A1A	0CDA116C075283B2D20779AB16EE3CAE30D6D282429AF7F46E955B6E7D41343F
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\80bd99edc6ef88c6_0	data	427D8448BBD40BE134ABE8D2C9E344C3	F3A1D7A31D11D1F428564E8C701D57847FD288A1	83CF49C24E579406E04B5717934B83A6EC884B783BF2BE427F6F3D090D045B87
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\a46198f6e7174ab0_0	data	CACE5A040F6D112F24EEA1AF101FDB33	47A6CB5046E9C9BB1FB4EB39A5C499F8D7486810	EFF3BD66EFB2F768B685A48989F9087B651ADB84C8626709EC27C7E89423C26F
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\c6ea1095c0720a7e_0	data	588AC53B2AD2A8C7A415DD846FD4A89A	FA6F5BA77A18E4DAF870FF4DC12D34D37DCCDC79	220ED1B5623BA0FDB54119FF09A2F7AB09CB9F38106846D602C6DCD56BB7AFD4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\d58d5c5d0706d2ab_0	data	FBCA71836DC9E92429E02B6A3F67DB65	E4D582F538DD4B590EB59F758E3A2C5B9A6A3935	E963ADDFBE307C67E210A4A7FC400E8F89A9F96429D2E01099964E86173DF980
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\daea56c943a1bb91_0	data	75C13C62A20EC5172565CF9C907A1064	9690585EAC7BC4D02AA4B78B7F78B604FD5B8458	FBF9586B63DE01C473BCD63D640350E7F0FE6F1D34865B1FCF1C9313862D5BFA
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\f230bed4e5124a30_0	data	91AE64D2540B7C055E44D4D4CFD53FD7	B526BB561C0E2354247B02CA5838FCAC39C4BC19	E4F31456BE67967DF3F8C11DDBE4D0C431590225D6DEAC6192E900A1866F6909
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\fc84010f889d68cd_0	data	3E3450D7FCAA03336BBE6F3E63083682	A35EBDE8CD8E8A7DFAB63A919E1F59A28E135BF2	C19A32E4504444B3E8E2D9453B1D11B6F3C18CCE3A175C2208BA3BA5E10EABFC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\index	data	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\index-dir\temp-index	x86 executable not stripped	72F9459637100A371CE57DD7ED68B020	242156C7CEE7C493DAE73A2A1F8AC99645E7EF09	F57F9B5FED1027481E78930B93DC0088DFDD907524BB6D3C5FE2240A8999EC0A
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\index-dir\the-real-index (copy)	x86 executable not stripped	72F9459637100A371CE57DD7ED68B020	242156C7CEE7C493DAE73A2A1F8AC99645E7EF09	F57F9B5FED1027481E78930B93DC0088DFDD907524BB6D3C5FE2240A8999EC0A
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\js\index-dir\the-real-index~RF570018.TMP (copy)	x86 executable not stripped	72F9459637100A371CE57DD7ED68B020	242156C7CEE7C493DAE73A2A1F8AC99645E7EF09	F57F9B5FED1027481E78930B93DC0088DFDD907524BB6D3C5FE2240A8999EC0A
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\wasm\index	data	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\wasm\index-dir\temp-index	data	6F6DF3D5CA66D9193D0F62809ED14589	79791D107E37AA385D82A350E4C7A52DD3945A62	83831A48403AD62254BDEA66353DC122823BE29A6F83FC7849A53BC516684CDC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Code Cache\wasm\index-dir\the-real-index (copy)	data	6F6DF3D5CA66D9193D0F62809ED14589	79791D107E37AA385D82A350E4C7A52DD3945A62	83831A48403AD62254BDEA66353DC122823BE29A6F83FC7849A53BC516684CDC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\DIPS	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 7, cookie 0x3, schema 4, UTF-8, version-valid-for 1	359BD7BD7BB05603669067DF40E2F27C	F2CBA2968456CD1A1CE94DB32DD75ED85021FF5C	C5D7B93B0196C2F66E2D0CDEE4BAA1B9730C1CAB85ED1EF7C89AC106575BF98C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\DawnCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\DawnCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\DawnCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\DawnCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\DawnCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	1240BB0B90A9918D45B7DD3A294537AE	2B591DAAABCBD370D3B0AB5F5035C0A9A6B3F85A	FAF4C41BA18000A5732921D46C1038D0486909A38C0C201D92D6BC0B16BEA61F
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\EdgeEDrop\EdgeEDropSQLite.db	SQLite 3.x database, last written using SQLite version 3042000, file counter 14, database pages 8, cookie 0xe, schema 4, UTF-8, version-valid-for 14	CF7760533536E2AF66EA68BC3561B74D	E991DE2EA8F42AE7E0A96A3B3B8AF87A689C8CCD	E1F183FAE5652BA52F5363A7E28BF62B53E7781314C9AB76B5708AF9918BE066
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Rules\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Rules\000003.log	data	51A2CBB807F5085530DEC18E45CB8569	7AD88CD3DE5844C7FC269C4500228A630016AB5B	1C43A1BDA1E458863C46DFAE7FB43BFB3E27802169F37320399B1DD799A819AC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Rules\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Rules\LOG	ASCII text	C9D39E65EB65355632FF3D447B6A273F	99FB52BD36C9553DBA39EE70E28E1E17FA8CD9F8	8DA844D26C2CE1D0FDBDB5A15FBA0C5932A397EA3B08A7E2CC6D8ADED8BC2F3C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Rules\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Scripts\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Scripts\000003.log	data	51A2CBB807F5085530DEC18E45CB8569	7AD88CD3DE5844C7FC269C4500228A630016AB5B	1C43A1BDA1E458863C46DFAE7FB43BFB3E27802169F37320399B1DD799A819AC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Scripts\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Scripts\LOG	ASCII text	C26315CDEC44D2D30968B7EB1AD4DE10	92FE2EAD78F6569B09CCC1A05F98CD3C0E845440	EB6A627C2811E8B97C2C91132AE59F20D767B04D3B2A52A1406E3FDFA677C481
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension Scripts\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension State\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension State\000003.log	data	891A884B9FA2BFF4519F5F56D2A25D62	B54A3C12EE78510CB269FB1D863047DD8F571DEA	E2610960C3757D1757F206C7B84378EFA22D86DCF161A98096A5F0E56E1A367E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension State\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension State\LOG	ASCII text	1374203BE63B87EE4BCBF822AA63B453	3556091CF54A7AB5DBA498A4FF0049052376CC0D	3F600FE465DE1023A69D1714C4A663E0349CEB4F899067F012A00C2C4BAE3A5C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Extension State\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\ExtensionActivityComp	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 1, cookie 0x1, schema 4, UTF-8, version-valid-for 1	2554AD7847B0D04963FDAE908DB81074	F84ABD8D05D7B0DFB693485614ECF5204989B74A	F6EF01E679B9096A7D8A0BD8151422543B51E65142119A9F3271F25F966E6C42
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\ExtensionActivityEdge	SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 8, cookie 0x8, schema 4, UTF-8, version-valid-for 2	1A7F642FD4F71A656BE75B26B2D9ED79	51BBF587FB0CCC2D726DDB95C96757CC2854CFAD	B96B6DDC10C29496069E16089DB0AB6911D7C13B82791868D583897C6D317977
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Favicons	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 1, database pages 10, cookie 0x8, schema 4, UTF-8, version-valid-for 1	F5BBD8449A9C3AB28AC2DE45E9059B01	C569D730853C33234AF2402E69C19E0C057EC165	825FF36C4431084C76F3D22CE0C75FA321EA680D1F8548706B43E60FCF5B566E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\GPUCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\GPUCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\GPUCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\GPUCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\GPUCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	C4CACF474FC54345E574B80C8419D51C	FC9B1E18A95DF8935EFF1E50335831FE56E83BBA	CAA0D34E0A796C2445EF66CB310D48B888832F018F9B7986277AD1E032955B88
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\History	SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 38, cookie 0x1f, schema 4, UTF-8, version-valid-for 2	C430132E26547912C1A6755FF7486542	FEFFC81B4A723C2141FED96EE1002809DED0FB59	EDA5208DC1F32E28258FEDA2417F4F422F231F9526F04D1DED311F9CFD69FA23
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\History-journal	data	4FA615F87C4A6EB2A1A6EAAF9FAA1147	967BC74AEF08BF76DD3E130CFFEC748C6C82F7CD	7929ECC7588D6331CE6B8C378ADBF50C7685DA43B65ACC6913BF035536084E4A
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Local Storage\leveldb\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Local Storage\leveldb\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Local Storage\leveldb\LOG	ASCII text	41D0E189FEF81F2A608F3C35E1FABFB3	1DF5198F854E190B8532FF1FCB4EFEB1F9DA4FB6	951AA4D4BF79EEC72056B4EE8843966236D313C9B4DF4C99E2F19BB950F04A97
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Local Storage\leveldb\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Login Data	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 1, database pages 21, cookie 0xc, schema 4, UTF-8, version-valid-for 1	FB3D677576C25FF04A308A1F627410B7	97D530911F9CB0C37717ABB145D748982ADA0440	A79300470D18AF26E3C5B4F23F81915B92D490105CE84A8122BF8100EC0C7517
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3042000, file counter 3, database pages 11, cookie 0x6, schema 4, UTF-8, version-valid-for 3	8E1485AFD5FAA0242C09DD2E1B096EB6	7210778A8147C830C5FF145DCA1C5659B5B9D75A	7CDAB13A9595177C035D43019C776682AEB1CE43AAEF914A39852B9C05BABF89
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\01dbf5f9-9980-43ca-9e9c-0073eb9e6fbf.tmp	JSON data	0763797B73B60C7D7BF6FA892E9A974E	F60E57D7CE23BA082F6E01ACAA7DD84A296DAB48	55E9672FBC7C29FBBA588DE2956D747CD5E30EDA5C7453E6B4EAAB67E0D7FCA0
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\3be2a821-ac8d-4f86-9a8b-e2a623414c32.tmp	JSON data	78BFCECB05ED1904EDCE3B60CB5C7E62	BF77A7461DE9D41D12AA88FBA056BA758793D9CE	C257F929CFF0E4380BF08D9F36F310753F7B1CCB5CB2AB811B52760DD8CB9572
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Cookies	SQLite 3.x database, last written using SQLite version 3042000, file counter 9, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 9	EF89B4927E74BD7F447552A8D8794230	A6A4EF42116E183D0CE25EA00A214326E8571CC8	CF1EE1AF2B5042F9F98CBE99E77FB2B7CA5F3ABD396FAC97AE9F989BD2EBA6AD
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State (copy)	JSON data	78BFCECB05ED1904EDCE3B60CB5C7E62	BF77A7461DE9D41D12AA88FBA056BA758793D9CE	C257F929CFF0E4380BF08D9F36F310753F7B1CCB5CB2AB811B52760DD8CB9572
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State~RF566138.TMP (copy)	JSON data	78BFCECB05ED1904EDCE3B60CB5C7E62	BF77A7461DE9D41D12AA88FBA056BA758793D9CE	C257F929CFF0E4380BF08D9F36F310753F7B1CCB5CB2AB811B52760DD8CB9572
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Network Persistent State~RF571e8d.TMP (copy)	JSON data	78BFCECB05ED1904EDCE3B60CB5C7E62	BF77A7461DE9D41D12AA88FBA056BA758793D9CE	C257F929CFF0E4380BF08D9F36F310753F7B1CCB5CB2AB811B52760DD8CB9572
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3042000, file counter 6, database pages 9, cookie 0x4, schema 4, UTF-8, version-valid-for 6	5E8D014CE10DDBA347B3D56D7A9ABABA	22F36B837001EF1DBF75A86050CD861044991472	7DD9B376E4204C7109DB3EB29085868567354F269C099B0DEFCFF1F38C2B4B66
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\SCT Auditing Pending Reports (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\SCT Auditing Pending Reports~RF560145.TMP (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Sdch Dictionaries (copy)	JSON data	20D4B8FA017A12A108C87F540836E250	1AC617FAC131262B6D3CE1F52F5907E31D5F6F00	6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\Trust Tokens	SQLite 3.x database, last written using SQLite version 3042000, file counter 3, database pages 9, cookie 0x6, schema 4, UTF-8, version-valid-for 3	25363ADC3C9D98BAD1A33D0792405CBF	D06E343087D86EF1A06F7479D81B26C90A60B5C3	6E019B8B9E389216D5BDF1F2FE63F41EF98E71DA101F2A6BE04F41CC5954532D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\a92dd89f-4ca5-4abd-921a-ed17a661cf24.tmp	JSON data	20D4B8FA017A12A108C87F540836E250	1AC617FAC131262B6D3CE1F52F5907E31D5F6F00	6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\c9b6447e-b2e5-4675-bbf5-5f74c50c4f0f.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\fa060d0f-39c1-4b0a-b653-5e7aa71261e2.tmp	JSON data	2800881C775077E1C4B6E06BF4676DE4	2873631068C8B3B9495638C865915BE822442C8B	226EEC4486509917AA336AFEBD6FF65777B75B65F1FB06891D2A857A9421A974
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Network\ffb4e41b-198f-4904-b405-adcb00ca2d07.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Preferences (copy)	JSON data	2B18D9D73A43F407EA08797DF7DD037E	4B9027B11157F44C9783F27E34BCD8EB5E029565	53A62A326986794E0FDE42B6881A336969EAEB266A8A77A53BC1198E4FED89CC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Preferences~RF564ad2.TMP (copy)	JSON data	2B18D9D73A43F407EA08797DF7DD037E	4B9027B11157F44C9783F27E34BCD8EB5E029565	53A62A326986794E0FDE42B6881A336969EAEB266A8A77A53BC1198E4FED89CC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Preferences~RF568877.TMP (copy)	JSON data	2B18D9D73A43F407EA08797DF7DD037E	4B9027B11157F44C9783F27E34BCD8EB5E029565	53A62A326986794E0FDE42B6881A336969EAEB266A8A77A53BC1198E4FED89CC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Preferences~RF56cf44.TMP (copy)	JSON data	2B18D9D73A43F407EA08797DF7DD037E	4B9027B11157F44C9783F27E34BCD8EB5E029565	53A62A326986794E0FDE42B6881A336969EAEB266A8A77A53BC1198E4FED89CC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Preferences~RF570d85.TMP (copy)	JSON data	2B18D9D73A43F407EA08797DF7DD037E	4B9027B11157F44C9783F27E34BCD8EB5E029565	53A62A326986794E0FDE42B6881A336969EAEB266A8A77A53BC1198E4FED89CC
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\PreferredApps	JSON data	2B432FEF211C69C745ACA86DE4F8E4AB	4B92DA8D4C0188CF2409500ADCD2200444A82FCC	42B55D126D1E640B1ED7A6BDCB9A46C81DF461FA7E131F4F8C7108C2C61C14DE
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\README	ASCII text, with no line terminators	643E00B0186AA80523F8A6BED550A925	EC4056125D6F1A8890FFE01BFFC973C2F6ABD115	A0C9ABAE18599F0A65FC654AD36251F6330794BEA66B718A09D8B297F3E38E87
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Secure Preferences (copy)	JSON data	AE8532E3AB4D177CF37F646CEAB4788B	B891EBF6507D286841EBC033B1B5E08306413EC0	BF0AA8C33013BB59477B94436E6CDB17B9B9D7701DD5FF4A622FA7C3EDEB6C56
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Session Storage\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Session Storage\000003.log	data	AAAC3CB5D0EA5AB1C0B69ECB0ED841C7	F72CE33811E0C5339286382D10D3C65150E2B748	2DF13262188048A2B02D54CD9CA41899B703F699874197FEE87344E7244695D6
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Session Storage\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Session Storage\LOG	ASCII text	0A59F1BFCFAF3EACFC49CE85CDBF9BE5	0860C5D6B881282367720A9474D876BD309638BB	F5764E00D729160D14EFB9F56D049E58DFF8774C8641EB2CABB5F6AB1CACDB35
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Session Storage\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Site Characteristics Database\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Site Characteristics Database\000003.log	data	148079685E25097536785F4536AF014B	C5FF5B1B69487A9DD4D244D11BBAFA91708C1A41	F096BC366A931FBA656BDCD77B24AF15A5F29FC53281A727C79F82C608ECFAB8
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Site Characteristics Database\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Site Characteristics Database\LOG	ASCII text	DEE9EE8FE28E6B0BA0157907F192A574	67F4E20AB57215879D13354C031E0608F8805635	9C1E229E17EFBEC9D81BACD5F7A3A3E9941423B8AFAAE38C8634E37686F24B95
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Site Characteristics Database\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Sync Data\LevelDB\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Sync Data\LevelDB\000003.log	data	90881C9C26F29FCA29815A08BA858544	06FEE974987B91D82C2839A4BB12991FA99E1BDD	A2CA52E34B6138624AC2DD20349CDE28482143B837DB40A7F0FBDA023077C26A
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Sync Data\LevelDB\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Sync Data\LevelDB\LOG	ASCII text	8E123C8C46AF01FBD2D2E97A971F1812	B48ED48D99B3890598FFDD838D9AF333974F70E6	464B3208B41285572A73341B1213BAC59B90BA4349329D312ED01CEF25BD8BD7
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Sync Data\LevelDB\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Top Sites	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 1	F2B4FB2D384AA4E4D6F4AEB0BBA217DC	2CD70CFB3CE72D9B079170C360C1F563B6BF150E	1ECC07CD1D383472DAD33D2A5766625009EA5EACBAEDE2417ADA1842654CBBC8
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Visited Links	data	3A5B1025EDBCC0CE53E0A2991CC3B77E	857FC0BB06A4907F3DCB43B6131A07BE28C14424	435B7284A2F952C4AA38D6442D83FE312D598FA506CC787B5B24966DE0A8567B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\Web Data	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 3, database pages 87, cookie 0x36, schema 4, UTF-8, version-valid-for 3	6B2D5ED0A90C99FD05D58FE8E924C886	34E1103E18E57E9D1769C89DFB2DAD84BFDD54B5	2873E973AB5B91CD07405FD5D35E2A843A408AD53696372BEC794F4582368E49
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\b49874c8-ce80-443d-8b34-9951ecec7b3e.tmp	JSON data	BF78E51027F3D224268DEB0EF8A25528	FD4D9699C0195440271757F39EFE02B82E7C1879	6CCC6BC6A25D24B62791737F928D1663E6BCFF72DC0D8F705E1A952498DACD37
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\d7542b30-cd1b-4283-850a-b689e49925ff.tmp	JSON data	17FABCA08ACA4BA2AF9AA5699DAC9CAB	BCCD25D973CDBBEC976B9C8AD8A8041150404563	9980FC28C03AA8995535A216C8730BA26146A88C01A7F164266F4BD7166A2CE4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\heavy_ad_intervention_opt_out.db	SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 4, cookie 0x2, schema 4, UTF-8, version-valid-for 2	D2CCDC36225684AAE8FA563AFEDB14E7	3759649035F23004A4C30A14C5F0B54191BEBF80	080AEE864047C67CB1586A5BA5EDA007AFD18ECC2B702638287E386F159D7AEE
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\000003.log	data	00C0DEFAC69CFE6E18C6FD4D684D6625	F80E1AB029E1116EE2FE85B2ECBF0959CCE884A7	1FCAFCF037F8CE32A6EB94539F4A7D67FC51FE2BD8EDBD95C1D0322841EEC8A2
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\LOG	ASCII text	93436A2515E7F230BF780C948DDC25D0	48D0A198BCA3407567C152BCEF0B051BAD4AD5EC	14A7FFEB39F54643845E582E323B6A3B003CE609C81071E114E2C6266B934862
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\metadata\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\metadata\000003.log	data	80CB416882D3EB5A42ADA0F027AC7A92	7873A6B51EC7EC37302D70784F75D4D78BEC2545	80660430F24FE2EF627BDEEF50CBAC8364022A9EF441102CBA9EC260BCCC6D07
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\metadata\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\metadata\LOG	ASCII text	65480E7CC6308E858C9BC78657AE1AC7	D78BB88F01BEAEE7D5DBF9BF9307C28F0FA19BAC	B54B36EFF0170C3312977174382815556F39EF4E55FA28DCE0D7F96E2CC90D12
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Default\shared_proto_db\metadata\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GrShaderCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GrShaderCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GrShaderCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GrShaderCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GrShaderCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	6E1C59A6634DB9E28F89473DBC64A0BA	8A557BF867C83FF1452653C2A7366BF043B25E2B	D4E34DA05D861DE49ECAE2AA34C85698FDFF44E5FED25BE6B91B68584AC6D7E2
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GraphiteDawnCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GraphiteDawnCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GraphiteDawnCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GraphiteDawnCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\GraphiteDawnCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	DE7E2DBAB19352F587741FC96E6FC11E	B40D90406E421BCBB743FC62D1D67CB38B71D292	C8DB6A6207D2F3E0EEFCEC0DA51B0E2E7545771ADCC64A9A0638849BBDF3C43C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Last Version	ASCII text, with no line terminators	BF16C04B916ACE92DB941EBB1AF3CB18	FA8DAEAE881F91F61EE0EE21BE5156255429AA8A	7FC23C9028A316EC0AC25B09B5B0D61A1D21E58DFCF84C2A5F5B529129729098
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State~RF55fa9e.TMP (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State~RF55fd4e.TMP (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State~RF562170.TMP (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State~RF564ad2.TMP (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State~RF570af5.TMP (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Local State~RF57992b.TMP (copy)	JSON data	E1EAD5683C1FD257C2762F50AA43AC75	FFB22E2745E679E3B425E84E3C0DEFFE3810DC3F	794A4DB7A3FE191CAC97F389F4D0009E4BCA0C0607EEFBF382C455434F123B91
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\ShaderCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\ShaderCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\ShaderCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\ShaderCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\ShaderCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	39C8BEBC39997AE16AB69D0D5587A19F	17828E87466673B211C92B29000984DF5610A462	E012ECE77F54F5E3F3E410ED43A4393A1C36E8C8DD6B5F4E0DAD8FC4EA6F3100
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\Variations	JSON data	961E3604F228B0D10541EBF921500C86	6E00570D9F78D9CFEBE67D4DA5EFE546543949A7	F7B24F2EB3D5EB0550527490395D2F61C3D2FE74BB9CB345197DAD81B58B5FED
C:\Users\user\AppData\Local\com.lencx.chatgpt\EBWebView\d8cd442f-8e0e-4862-9ea1-ca0d05d411fb.tmp	JSON data	54A7A542689F6D5D7BC0384B22B2E484	5CF77E0A857763E77E4E9F0B4EF25BED36403287	5E9BE7FEF845F4FBB05502FDA8F392C1DD26C476B7D7859D047172AE5CBDFD09

Windows Analysis Report
I8R24VDCOi.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Spreading

Networking

Key, Mouse, Clipboard, Microphone and Screen Capturing

System Summary

Data Obfuscation

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Contacted Domains

Contacted URLs

Windows Analysis Report I8R24VDCOi.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Spreading

Networking

Key, Mouse, Clipboard, Microphone and Screen Capturing

System Summary

Data Obfuscation

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Contacted Domains

Contacted URLs

Windows Analysis Report
I8R24VDCOi.exe