URL:

win32subsystem.live/supermium/

Full analysis: https://app.any.run/tasks/def69f83-701d-417f-8e15-8632c5533a3d
Verdict: Malicious activity
Analysis date: April 19, 2024, 15:36:10
OS: Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:
MD5:

E58CBCD8DC95C8534E4D1F5AA4E1D88E

SHA1:

9992EB4B51190FFD35167D7307C11A67414E60E7

SHA256:

0F3734179EC6E854B5B0C1A98E35C1E4672636CD89ADC1B2CDBC1B9A82435013

SSDEEP:

3:1cWVMTv8xQ3:1cWE8y

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    • Drops the executable file immediately after the start

      • supermium_122_32_setup.exe (PID: 1796)
      • setup.exe (PID: 3832)

  • SUSPICIOUS

    • Process drops legitimate windows executable

      • supermium_122_32_setup.exe (PID: 1796)
      • setup.exe (PID: 3832)

    • Executable content was dropped or overwritten

      • setup.exe (PID: 3832)
      • supermium_122_32_setup.exe (PID: 1796)

    • Application launched itself

      • chrome.exe (PID: 1748)
      • chrome.exe (PID: 2976)

    • Reads the Internet Settings

      • chrome.exe (PID: 2976)
      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3548)
      • chrome.exe (PID: 3356)

    • Reads settings of System Certificates

      • chrome.exe (PID: 2976)

    • Reads security settings of Internet Explorer

      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3548)
      • chrome.exe (PID: 3356)

  • INFO

    • Application launched itself

      • msedge.exe (PID: 1316)

    • Executable content was dropped or overwritten

      • msedge.exe (PID: 1316)

    • Checks supported languages

      • setup.exe (PID: 3832)
      • supermium_122_32_setup.exe (PID: 1796)
      • chrome.exe (PID: 2976)
      • chrome.exe (PID: 1748)
      • chrome.exe (PID: 3872)
      • chrome.exe (PID: 1408)
      • chrome.exe (PID: 2016)
      • chrome.exe (PID: 2172)
      • chrome.exe (PID: 2000)
      • chrome.exe (PID: 2232)
      • chrome.exe (PID: 2176)
      • chrome.exe (PID: 120)
      • chrome.exe (PID: 3264)
      • chrome.exe (PID: 2732)
      • chrome.exe (PID: 3372)
      • chrome.exe (PID: 2092)
      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 2960)
      • chrome.exe (PID: 2088)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 996)
      • chrome.exe (PID: 2056)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2888)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 2104)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 2528)
      • chrome.exe (PID: 2832)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3320)
      • chrome.exe (PID: 2780)
      • chrome.exe (PID: 3548)
      • chrome.exe (PID: 3080)
      • chrome.exe (PID: 4032)
      • chrome.exe (PID: 3356)

    • Reads the computer name

      • setup.exe (PID: 3832)
      • chrome.exe (PID: 2976)
      • chrome.exe (PID: 1748)
      • chrome.exe (PID: 3872)
      • chrome.exe (PID: 1408)
      • chrome.exe (PID: 2172)
      • chrome.exe (PID: 2016)
      • chrome.exe (PID: 2000)
      • chrome.exe (PID: 2232)
      • chrome.exe (PID: 3372)
      • chrome.exe (PID: 3264)
      • chrome.exe (PID: 120)
      • chrome.exe (PID: 2176)
      • chrome.exe (PID: 2732)
      • chrome.exe (PID: 2092)
      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 2960)
      • chrome.exe (PID: 2088)
      • chrome.exe (PID: 996)
      • chrome.exe (PID: 2056)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2888)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 2104)
      • chrome.exe (PID: 2528)
      • chrome.exe (PID: 2832)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3320)
      • chrome.exe (PID: 2780)
      • chrome.exe (PID: 3548)
      • chrome.exe (PID: 3080)
      • chrome.exe (PID: 4032)
      • chrome.exe (PID: 3356)

    • Drops the executable file immediately after the start

      • msedge.exe (PID: 1316)

    • Create files in a temporary directory

      • supermium_122_32_setup.exe (PID: 1796)
      • chrome.exe (PID: 2976)

    • The process uses the downloaded file

      • msedge.exe (PID: 3656)
      • msedge.exe (PID: 1316)
      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3548)
      • chrome.exe (PID: 3356)

    • Creates files in the program directory

      • setup.exe (PID: 3832)

    • Reads the machine GUID from the registry

      • setup.exe (PID: 3832)
      • chrome.exe (PID: 2976)
      • chrome.exe (PID: 3264)
      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3356)
      • chrome.exe (PID: 3548)

    • Manual execution by a user

      • chrome.exe (PID: 2976)

    • Creates files or folders in the user directory

      • chrome.exe (PID: 2976)
      • chrome.exe (PID: 1408)
      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3356)
      • chrome.exe (PID: 3548)

    • Process checks computer location settings

      • chrome.exe (PID: 2976)
      • chrome.exe (PID: 2232)
      • chrome.exe (PID: 2000)
      • chrome.exe (PID: 3372)
      • chrome.exe (PID: 2176)
      • chrome.exe (PID: 2732)
      • chrome.exe (PID: 2832)
      • chrome.exe (PID: 3320)

    • Checks proxy server information

      • chrome.exe (PID: 2736)
      • chrome.exe (PID: 2908)
      • chrome.exe (PID: 3224)
      • chrome.exe (PID: 2228)
      • chrome.exe (PID: 3276)
      • chrome.exe (PID: 1584)
      • chrome.exe (PID: 3548)
      • chrome.exe (PID: 3356)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
100
Monitored processes
59
Malicious processes
4
Suspicious processes
8

Behavior graph

Click at the process to see the details
start msedge.exe msedge.exe no specs msedge.exe no specs msedge.exe msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs supermium_122_32_setup.exe no specs supermium_122_32_setup.exe setup.exe chrome.exe chrome.exe chrome.exe chrome.exe no specs chrome.exe chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
120"C:\Program Files\Supermium\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1356 --field-trial-handle=1184,i,14223984885204549302,11965854928928593673,262144 --variations-seed-version /prefetch:2C:\Program Files\Supermium\chrome.exechrome.exe
User:
admin
Company:
win32
Integrity Level:
LOW
Description:
Supermium
Version:
122.0.6261.85
Modules
Images
c:\program files\supermium\chrome.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\supermium\122.0.6261.85\chrome_elf.dll
c:\program files\supermium\progwrp.dll
c:\windows\system32\psapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\msvcrt.dll
896"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2368 --field-trial-handle=1316,i,10803978325504844609,10390684645182964168,131072 /prefetch:1C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
996"C:\Program Files\Supermium\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --mojo-platform-channel-handle=4228 --field-trial-handle=1184,i,14223984885204549302,11965854928928593673,262144 --variations-seed-version /prefetch:8C:\Program Files\Supermium\chrome.exechrome.exe
User:
admin
Company:
win32
Integrity Level:
LOW
Description:
Supermium
Exit code:
0
Version:
122.0.6261.85
Modules
Images
c:\program files\supermium\chrome.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\supermium\122.0.6261.85\chrome_elf.dll
c:\program files\supermium\progwrp.dll
c:\windows\system32\psapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\msvcrt.dll
1168"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2512 --field-trial-handle=1316,i,10803978325504844609,10390684645182964168,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1316"C:\Program Files\Microsoft\Edge\Application\msedge.exe" "win32subsystem.live/supermium/"C:\Program Files\Microsoft\Edge\Application\msedge.exe
explorer.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1340"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1444 --field-trial-handle=1316,i,10803978325504844609,10390684645182964168,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1376"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1612 --field-trial-handle=1316,i,10803978325504844609,10390684645182964168,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1408"C:\Program Files\Supermium\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=1360 --field-trial-handle=1184,i,14223984885204549302,11965854928928593673,262144 --variations-seed-version /prefetch:3C:\Program Files\Supermium\chrome.exe
chrome.exe
User:
admin
Company:
win32
Integrity Level:
MEDIUM
Description:
Supermium
Version:
122.0.6261.85
Modules
Images
c:\program files\supermium\chrome.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\supermium\122.0.6261.85\chrome_elf.dll
c:\program files\supermium\progwrp.dll
c:\windows\system32\psapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\msvcrt.dll
1544"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3216 --field-trial-handle=1316,i,10803978325504844609,10390684645182964168,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1584"C:\Program Files\Supermium\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=5392 --field-trial-handle=1184,i,14223984885204549302,11965854928928593673,262144 --variations-seed-version /prefetch:8C:\Program Files\Supermium\chrome.exechrome.exe
User:
admin
Company:
win32
Integrity Level:
MEDIUM
Description:
Supermium
Exit code:
0
Version:
122.0.6261.85
Modules
Images
c:\program files\supermium\chrome.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\supermium\122.0.6261.85\chrome_elf.dll
c:\program files\supermium\progwrp.dll
c:\windows\system32\psapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\msvcrt.dll
Total events
23 789
Read events
23 527
Write events
214
Delete events
48

Modification events

(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge\BLBeacon
Operation:writeName:failed_count
Value:
0
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge\BLBeacon
Operation:writeName:state
Value:
2
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge\ThirdParty
Operation:writeName:StatusCodes
Value:
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge\ThirdParty
Operation:writeName:StatusCodes
Value:
01000000
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge\BLBeacon
Operation:writeName:state
Value:
1
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\EdgeUpdate\ClientState\{56EB18F8-B008-4CBD-B6D2-8C97FE7E9062}
Operation:writeName:dr
Value:
1
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge\StabilityMetrics
Operation:writeName:user_experience_metrics.stability.exited_cleanly
Value:
0
(PID) Process:(1316) msedge.exeKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EdgeUpdate\ClientStateMedium\{56EB18F8-B008-4CBD-B6D2-8C97FE7E9062}\LastWasDefault
Operation:writeName:S-1-5-21-1302019708-1500728564-335382590-1000
Value:
0C4CD1210B752F00
(PID) Process:(1316) msedge.exeKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EdgeUpdate\ClientStateMedium\{56EB18F8-B008-4CBD-B6D2-8C97FE7E9062}\FirstNotDefault
Operation:delete valueName:S-1-5-21-1302019708-1500728564-335382590-1000
Value:
(PID) Process:(1316) msedge.exeKey:HKEY_CURRENT_USER\Software\Microsoft\Edge
Operation:writeName:UsageStatsInSample
Value:
1
Executable files
31
Suspicious files
174
Text files
68
Unknown types
32

Dropped files

PID
Process
Filename
Type
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Local State
MD5:
SHA256:
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\commerce_subscription_db\LOG.old~RF1bda01.TMP
MD5:
SHA256:
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\commerce_subscription_db\LOG.old
MD5:
SHA256:
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\EdgePushStorageWithConnectTokenAndKey\LOG.old~RF1bda30.TMP
MD5:
SHA256:
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\EdgePushStorageWithConnectTokenAndKey\LOG.old
MD5:
SHA256:
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\LOG.old~RF1bda3f.TMP
MD5:
SHA256:
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\LOG.old
MD5:
SHA256:
4032msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\CrashpadMetrics.pma~RF1bd80d.TMP
MD5:886E82F2CA62ECCCE64601B30592078A
SHA256:E5E13D53601100FF3D6BB71514CBCCC4C73FE9B7EF5E930100E644187B42948E
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Local State~RF1bd974.TMP
MD5:6EB6B80193BBD69C1814A257B64541C3
SHA256:C241C44AE5D29F84DEBE35F27D4C419DA1EDCE86399E9F55940EE8250286B86A
1316msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Last Version
MD5:61FE7896F9494DCDF53480A325F4FB85
SHA256:ACFD3CD36E0DFCF1DCB67C7F31F2A5B9BA0815528A0C604D4330DFAA9E683E51
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
0
TCP/UDP connections
44
DNS requests
44
Threats
0

HTTP requests

No HTTP requests
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4
System
192.168.100.255:138
whitelisted
4
System
192.168.100.255:137
whitelisted
224.0.0.252:5355
unknown
1080
svchost.exe
224.0.0.252:5355
unknown
1316
msedge.exe
239.255.255.250:1900
unknown
3136
msedge.exe
104.42.191.226:443
config.edge.skype.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
unknown
3136
msedge.exe
204.79.197.239:443
edge.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
unknown
3136
msedge.exe
188.114.96.3:443
win32subsystem.live
CLOUDFLARENET
NL
unknown
3136
msedge.exe
2.23.209.140:443
www.bing.com
Akamai International B.V.
GB
unknown
3136
msedge.exe
152.199.21.175:443
msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com
EDGECAST
DE
whitelisted

DNS requests

Domain
IP
Reputation
config.edge.skype.com
  • 104.42.191.226
whitelisted
win32subsystem.live
  • 188.114.96.3
  • 188.114.97.3
unknown
edge.microsoft.com
  • 204.79.197.239
  • 13.107.21.239
whitelisted
www.bing.com
  • 2.23.209.140
  • 2.23.209.182
  • 2.23.209.149
  • 2.23.209.133
  • 2.23.209.179
  • 2.19.120.29
  • 2.19.120.21
whitelisted
msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com
  • 152.199.21.175
whitelisted
self.events.data.microsoft.com
  • 40.74.98.195
whitelisted
redirector.gvt1.com
  • 142.250.184.206
whitelisted
accounts.google.com
  • 74.125.133.84
shared
r1---sn-4g5ednsy.gvt1.com
  • 74.125.173.134
whitelisted
r2---sn-4g5ednde.gvt1.com
  • 74.125.162.135
whitelisted

Threats

No threats detected
Process
Message
chrome.exe
[0419/163751.542:ERROR:crash_report_database_win.cc(613)] CreateDirectory C:\Users\admin\AppData\Local\Supermium\User Data\Crashpad: The system cannot find the path specified. (0x3)
chrome.exe
[0419/163751.558:ERROR:registration_protocol_win.cc(136)] TransactNamedPipe: The pipe has been ended. (0x6D)
chrome.exe
[0419/163751.558:ERROR:crash_report_database_win.cc(613)] CreateDirectory C:\Users\admin\AppData\Local\Supermium\User Data\Crashpad: The system cannot find the path specified. (0x3)
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
win32subsystem.live/supermium/