File name:

79839328.eml

Full analysis: https://app.any.run/tasks/e54ce931-56df-46ad-a565-fc55f2639350
Verdict: Malicious activity
Analysis date: August 01, 2025, 03:36:53
OS: Windows 10 Professional (build: 19044, 64 bit)
Tags:
phishing
phish-url
possible-phishing
Indicators:
MIME: message/rfc822
File info: RFC 822 mail, ASCII text, with CRLF line terminators
MD5:

0FFE9BDAD75E8F8102A5D4E85DD3F382

SHA1:

0D3C78452D6733ADF357695F5995F480BCC9A1A3

SHA256:

F9BC370FB1B2B43FFF8754A8C3DD5C45E9944C3F5BE7F573360BFC6C948A383F

SSDEEP:

192:Pt6mrDhEVVCvfcomp5VD23u3f9HTQoL3pjPWZu2h3TghPpKay83RquP0Q2Nl2T3C:scqnERoVKuVHMcpjWdkhhuggu8Q2NcCD

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    • Possibly a phishing URL has been detected

      • OUTLOOK.EXE (PID: 5764)

    • Suspicious URL found

      • OUTLOOK.EXE (PID: 5764)

    • Phishing has been detected

      • msedge.exe (PID: 2040)

  • SUSPICIOUS

    • Possibly a phishing URL contains email has been detected

      • msedge.exe (PID: 2040)

  • INFO

    • Reads Environment values

      • identity_helper.exe (PID: 7412)

    • Reads the computer name

      • identity_helper.exe (PID: 7412)

    • Checks supported languages

      • identity_helper.exe (PID: 7412)

    • Application launched itself

      • msedge.exe (PID: 2040)

    • Checks proxy server information

      • slui.exe (PID: 7732)

    • Reads the software policy settings

      • slui.exe (PID: 7732)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.eml | E-Mail message (Var. 5) (100)
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
166
Monitored processes
25
Malicious processes
2
Suspicious processes
0

Behavior graph

Click at the process to see the details
start outlook.exe ai.exe no specs #POSSIBLE-PHISHING msedge.exe msedge.exe no specs msedge.exe msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs identity_helper.exe no specs identity_helper.exe no specs msedge.exe no specs msedge.exe no specs slui.exe msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
1880"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2528,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=2524 /prefetch:2C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
2028"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --always-read-main-dll --field-trial-handle=3632,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=2312 /prefetch:1C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
2040"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://68430548dee94b490b89982e--bright-donut-63bdef.netlify.app/#n.azwan@avisena.com.myC:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
OUTLOOK.EXE
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
2348"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --always-read-main-dll --field-trial-handle=3640,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=3704 /prefetch:1C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
2972"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --disable-quic --string-annotations --always-read-main-dll --field-trial-handle=5376,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=5480 /prefetch:8C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
3740"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --disable-quic --string-annotations --always-read-main-dll --field-trial-handle=2656,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=2668 /prefetch:8C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
4552"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --extension-process --renderer-sub-type=extension --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --always-read-main-dll --field-trial-handle=4328,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=4316 /prefetch:2C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
5576"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.92 --initial-client-data=0x304,0x308,0x30c,0x2fc,0x314,0x7ffc4565f208,0x7ffc4565f214,0x7ffc4565f220C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
5628"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --disable-quic --string-annotations --always-read-main-dll --field-trial-handle=2232,i,2346192387633756788,15501827562800595079,262144 --variations-seed-version --mojo-platform-channel-handle=2568 /prefetch:3C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
msedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Microsoft Edge
Version:
133.0.3065.92
Modules
Images
c:\program files (x86)\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files (x86)\microsoft\edge\application\133.0.3065.92\msedge_elf.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcp_win.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\combase.dll
c:\windows\system32\rpcrt4.dll
5764"C:\Program Files\Microsoft Office\Root\Office16\OUTLOOK.EXE" /eml C:\Users\admin\AppData\Local\Temp\79839328.emlC:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
explorer.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Microsoft Outlook
Version:
16.0.16026.20146
Modules
Images
c:\program files\microsoft office\root\office16\outlook.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
Total events
14 470
Read events
14 034
Write events
374
Delete events
62

Modification events

(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\GracefulExit\OUTLOOK\1644
Operation:delete valueName:0
Value:
ซ渐�꿃僁赇臢섙䘱醛ꂾ樁င$驄摽鶲…ީ湕湫睯쥮Ȇ∢්ł¢ᣂ숁씀褎예ﴏ�뾙뚠ǭ჉砃㐶ᇅ೬ዒ漋甀琀氀漀漀欀⸀攀砀攀씀‖ៅ肀줄࠘㈲㈱䐭捥
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\GracefulExit\OUTLOOK\1644
Operation:delete keyName:(default)
Value:
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\OUTLOOK\5764
Operation:writeName:0
Value:
0B0E10E2FB0ED35AF0814086FA87615C8164E7230046FEBBBCC8D8D280EE016A04102400449A7D64B29D01008500A907556E6B6E6F776EC906022222CA0DC2190000C50E8908C91003783634C511842DD2120B6F00750074006C006F006F006B002E00650078006500C51620C517808004C91808323231322D44656300
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\Diagnostics\BootDiagnosticsData
Operation:writeName:SessionId
Value:
D30EFBE2-F05A-4081-86FA-87615C8164E7
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\Diagnostics
Operation:delete valueName:BootFailureCount
Value:
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\Preferences
Operation:delete valueName:ChangeProfileOnRestart
Value:
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Licensing
Operation:delete valueName:EligibleForExtendedGrace
Value:
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\outlook\ConfigContextData
Operation:writeName:1.2
Value:
31363238362D312D332C502D582D3131363038352D312D332C502D582D3131363037382D312D352C502D582D3131363036352D312D332C502D582D37343233342D312D31312C502D452D32393636322D322D332C502D522D36313335382D4331372D32322C502D522D313034393532362D322D382C502D522D313034393533352D322D382C502D522D32393330332D322D32302C502D522D32393033312D322D32302C502D522D33363331362D362D32302C502D522D33303239302D362D32332C502D522D32383938322D332D31382C502D522D36333934372D31382D322C502D522D36333335372D31382D31392C502D522D36313336312D31382D32362C502D522D36313336302D31382D32312C502D522D35393530312D4331372D352C502D522D34383633342D322D31352C502D522D34373234322D31382D31312C502D522D34353537392D31382D382C502D522D34323531322D312D332C502D522D34303532312D322D31332C502D522D33383730342D342D362C502D522D33383231322D322D31312C502D522D33353834362D382D342C502D522D33353430372D342D332C502D522D33333133342D322D31372C502D522D33303239322D342D392C502D522D32383634342D312D342C502D522D32343033372D312D372C502D522D32333434352D332D372C502D522D32333337302D322D392C502D522D32333433342D332D372C502D522D31383531332D312D33302C502D442D33343630392D312D332C502D442D33343235302D312D332C73686175743539363A3639383734352C776F72646D61696C737461746566756C6175676C6F6F706F6E3A3430343730362C73686772613439383A3232373730372C73686772613630313A3138343038302C73686772613335353A3230383034392C73686772613530323A3138393932342C73686772613734373A38363637372C502D582D313130373037302D322D332C502D582D313038333432372D322D352C502D582D313034313336382D332D31302C502D582D313034323339332D332D372C502D582D313032343737362D322D372C502D582D313030303332322D312D372C502D522D36353031312D312D332C502D522D35303534312D322D372C66366562623730383A3433343833322C6A683861623434373A3338303633332C65386A69683932303A3434323139352C6C697374656E696E676F6E6465766963653A3332343439342C61686938323431313A3434323135392C73683335303A3332393432382C502D582D37313536382D312D352C502D522D36393233322D33382D31322C502D522D32363434322D312D382C502D522D32333638312D322D372C502D442D33323530322D322D332C502D442D33323530312D322D332C502D442D33323431352D322D332C7461656E613537363A39303236352C502D582D313033383432302D322D352C502D582D3130393636322D312D31372C502D582D3130373131392D312D332C502D582D38303033382D312D352C502D522D36343531332D31382D31312C502D522D35313931362D38342D33312C502D442D313136303234302D312D362C502D442D313136303134312D312D342C38686262343533383A3338363637302C74656172693335323A3233333737342C74657072693632383A3433393731302C74656576653835303A3132303534302C502D522D313538353838372D342D362C502D522D313036373736362D372D31352C502D522D313535313135332D312D332C502D522D313233363935332D31312D31352C502D522D313534373631372D312D332C502D522D313532363837352D31352D332C502D522D313532363837342D31352D332C502D522D313532363837332D31352D332C502D522D313532363837322D31352D332C502D522D313532363837302D31352D332C502D522D313532363836392D31352D332C502D522D313532363836382D31352D332C502D522D313532363836372D31352D332C502D522D313532363836362D31352D332C502D522D313532363836322D31352D332C502D522D313437393637342D332D352C502D522D33383234382D32322D32382C502D522D313431353138332D33322D342C502D522D313431353138322D33322D342C502D522D313431353138312D33322D342C502D522D313431353138302D33322D342C502D522D313431353137392D33322D342C502D522D313238303138362D312D332C502D522D313236373038342D322D362C502D522D313236313931382D322D342C502D522D313235393532392D312D332C502D522D313234353830342D34382D352C502D522D313234353239362D342D362C502D522D313138333633392D36322D362C502D522D313138333633312D36322D362C502D522D313138333632382D36322D362C502D522D313135373537302D322D342C502D522D313134303939382D37352D372C502D522D313134303939372D37352D372C502D522D313134303939362D37352D372C502D522D313134303939352D37352D372C502D522D313134303939342D37352D372C502D522D313134303939332D37352D372C502D522D313134303939322D37352D372C502D522D313134303939312D37352D372C502D522D313134303939302D37352D372C502D522D313134303938392D37352D372C502D522D313133323832312D322D342C502D522D313132333331362D312D332C502D522D313131393031332D312D332C502D522D313130363736382D38362D382C502D522D313130363736372D38362D382C502D522D313130363736362D38362D382C502D522D313130363736352D38362D382C502D522D313130363736342D38362D382C502D522D313130363736332D38362D382C502D522D313130363736322D38362D382C502D522D313039383739362D312D332C502D522D313039343434352D312D332C502D522D313035383634332D352D392C502D522D313038303431322D312D332C502D522D313038303130312D39362D392C502D522D313038303130302D39362D392C502D522D313038303039392D39362D392C502D522D313038303039372D39362D392C502D522D313038303039362D39362D392C502D522D313038303039352D39362D392C502D522D313038303039342D39362D392C502D522D313038303039332D39362D392C502D522D313038303039322D39362D392C502D522D313038303039312D39362D392C502D522D313038303039302D39362D392C502D522D313038303038392D39362D392C502D522D313038303038382D3131332D31302C502D522D313037313736312D312D332C502D522D313036393736392D322D342C502D522D313036383131352D312D332C502D522D313032343037362D342D382C502D522D313032343037342D342D382C502D522D313035393332392D3130342D31302C502D522D313035393332382D3132312D31312C502D522D313035393332362D3130342D31302C502D522D313035393332352D3130342D31302C502D522D313035393332342D3130342D31302C502D522D313035393332332D3132312D31312C502D522D313035393332322D3132312D31312C502D522D313035393332312D38372D392C502D522D313035393332302D3130342D31302C502D522D313035393331392D3130342D31302C502D522D313035393331382D3130342D31302C502D522D313035393331372D3130342D31302C502D522D313035393331362D3130342D31302C502D522D313035393331352D3130342D31302C502D522D313035393331342D3130342D31302C502D522D313035393331322D3130342D31302C502D522D313035393331312D3130342D31302C502D522D313035393331302D3130342D31302C502D522D313035393330392D3130342D31302C502D522D313035393330382D3130342D31302C502D522D313035393330372D3130342D31302C502D522D313035393330362D3130342D31302C502D522D313035393330352D3130342D31302C502D522D313035393330342D3130342D31302C502D522D313035393330332D3132312D31312C502D522D313035393330322D3130342D31302C502D522D313035393330312D3132312D31312C502D522D313035393330302D3130342D31302C502D522D313035393239392D3132312D31312C502D522D313035393239382D3130342D31302C502D522D313035393239372D3132312D31312C502D522D313035393239362D3130342D31302C502D522D313035393239352D3130342D31302C502D522D313035393239342D3130342D31302C502D522D313035393239332D3130342D31302C502D522D313035393239322D37312D382C502D522D313035393239312D3132312D31312C502D522D313035393239302D3130342D31302C502D522D313035393238392D3130342D31302C502D522D313035393238382D3130342D31302C502D522D313035393238372D3130342D31302C502D522D313035393238362D3130342D31302C502D522D313035393238352D3130342D31302C502D522D313035393238342D3130342D31302C502D522D313035393238332D3130342D31302C502D522D313035393238322D3130342D31302C502D522D313035393238312D3130342D31302C502D522D313035393238302D3130342D31302C502D522D313035393237392D3130342D31302C502D522D313035393237382D3130342D31302C502D522D313035393237372D3130342D31302C502D522D313035393237362D3130342D31302C502D522D313035393237352D3130342D31302C502D522D313035393237342D3130342D31302C502D522D313035393237332D3130342D31302C502D522D313035393237322D3130342D31302C502D522D313035393237312D3130342D31302C502D522D313035393237302D3130342D31302C502D522D313035393236392D3130342D31302C502D522D313035393236382D3130342D31302C502D522D313035393236372D3130342D31302C502D522D313035393236362D3130342D31302C502D522D313035393236352D3130342D31302C502D522D313035393236342D3130342D31302C502D522D313035393236332D3130342D31302C502D522D313035393236322D3130342D31302C502D522D313035393236312D3130342D31302C502D522D313035393236302D3130342D31302C502D522D313035393235392D3130342D31302C502D522D313035393235382D3130342D31302C502D522D313035393235372D3130342D31302C502D522D313035393235362D3130342D31302C502D522D313035393235352D3130342D31302C502D522D313035393235342D3130342D31302C502D522D313035393235332D3130342D31302C502D522D313035393235322D3130342D31302C502D522D313035393235312D3130342D31302C502D522D313035393235302D3130342D31302C502D522D313035393234392D3130342D31302C502D522D313035393234382D3130342D31302C502D522D313035393234372D3130342D31302C502D522D313035393234352D3130342D31302C502D522D313035393234342D3132312D31312C502D522D313035393234332D3130342D31302C502D522D313035393234322D3130342D31302C502D522D313035393234312D3130342D31302C502D522D313035393134362D3132302D31322C502D522D313035393035332D3131322D31312C502D522D313035383938382D3132302D31322C502D522D313035383938372D3131322D31312C502D522D313035383938362D3131322D31312C502D522D313035383938352D3132382D31332C502D522D313035383938342D3132382D31332C502D522D313035383938332D3133362D31342C502D522D313035383938322D3133372D31332C502D522D313035383938312D3131322D31312C502D522D313035383938302D3131322D31312C502D522D313035383937392D3132382D31332C502D522D313035383937382D3132382D31332C502D522D313035383937372D3134342D31352C502D522D313035383937362D3133372D31332C502D522D313035383937352D3133372D31332C502D522D313035383937342D3133372D31332C502D522D313035383937332D3133372D31332C502D522D313035383937322D3133372D31332C502D522D313035383937312D3133372D31332C502D522D313035383936392D3133372D31332C502D522D313035383936382D3133372D31332C502D522D313035383936372D3133362D31342C502D522D313035383936362D3133362D31342C502D522D313035383936352D3131322D31312C502D522D313035383936342D3131322D31312C502D522D313035383936332D3131322D31312C502D522D313035383936322D3131322D31312C502D522D313035383936312D3131322D31312C502D522D313035383936302D3131322D31312C502D522D313035383935392D3131322D31312C502D522D313035383935382D3132302D31322C502D522D313035383935372D3131322D31312C502D522D313035383935362D3132392D31322C502D522D313035383935352D3132392D31322C502D522D313035383935342D3132392D31322C502D522D313035383935332D3132392D31322C502D522D313035383935322D3132392D31322C502D522D313035383935312D3132392D31322C502D522D313035383935302D3132392D31322C502D522D313035383934392D3132392D31322C502D522D313035383934382D3132392D31322C502D522D313035383934372D3132392D31322C502D522D313035383934362D3132392D31322C502D522D313035383934352D3132392D31322C502D522D313035383934342D3132302D31322C502D522D313035383934332D3132302D31322C502D522D313035383934322D3133362D31342C502D522D313035383934312D3132302D31322C502D522D313035383934302D3132302D31322C502D522D313035383933392D3132302D31322C502D522D313035383933382D3132302D31322C502D522D313035383933372D3132302D31322C502D522D313035383933362D3132302D31322C502D522D313035383933352D3132302D31322C502D522D313034393137352D312D332C502D522D313034353131382D322D342C502D522D313034343430382D312D332C502D522D313033373838372D312D332C502D522D313033373837392D312D332C502D522D313033363839342D312D332C502D522D313033363239332D312D332C502D522D313033363239322D312D332C502D522D313033363238392D322D342C502D522D313033363238382D312D332C502D522D313033363036382D322D342C502D522D313033363033392D322D342C502D522D313033353933332D322D342C502D522D313033353839342D312D332C502D522D313033353134392D322D342C502D522D313033333831372D312D332C502D522D313033333632342D322D342C502D522D313032383535302D322D342C502D522D313032383136382D312D332C502D522D313032373533352D332D352C502D522D313032343638302D342D362C502D522D313032343037312D322D342C502D522D313031313233322D332D352C502D522D313031303339332D312D332C502D522D313030363839362D312D332C502D522D313030363839342D312D332C502D522D313030363630362D332D352C502D522D313030363536322D322D342C502D522D313030303036312D322D342C502D522D3131313638322D312D332C502D522D3130353733312D33362D33382C502D522D3130343433352D31332D31352C502D522D3130303239342D312D332C502D522D39393633332D312D332C502D522D39383932392D322D342C502D522D39383932362D312D332C502D522D39383235302D312D332C502D522D39343535362D322D342C502D522D39333037372D312D332C502D522D39303839352D332D352C502D522D38383330392D322D342C502D522D38363131382D312D332C502D522D38303531372D372D392C502D522D37383835322D332D352C502D522D37383131322D342D362C502D522D37363931382D322D342C502D522D37363732312D312D332C502D522D37363235332D312D332C502D522D37353434302D322D342C502D522D37353433362D312D332C502D522D37353433342D312D332C502D522D37353433332D312D332C502D522D37323434392D372D31302C502D522D36383036392D322D342C502D522D36363937352D312D332C502D522D36363132312D322D342C502D522D36353536372D312D332C502D522D36333034392D322D342C502D522D36303630322D332D352C502D522D35333330392D312D332C502D522D35323633332D312D332C502D522D35323137312D322D342C502D522D35313932312D382D31302C502D522D35313235382D382D31302C502D522D35303735322D322D342C502D522D35303638312D322D342C502D522D35303539392D342D362C502D522D35303539362D342D382C502D522D35303538352D31382D32302C502D522D35303535332D312D332C502D522D35303530322D332D352C502D522D34393539372D332D352C502D522D34393435382D322D342C502D522D34383533302D372D392C502D522D34373934382D312D342C502D522D34363538302D332D352C502D522D34363438342D31302D31322C502D522D34363132322D312D332C502D522D34353835382D322D342C502D522D34333936362D322D342C502D522D34333530322D31392D32312C502D522D34333138382D362D382C502D522D34313433302D312D332C502D522D34303735312D382D31302C502D522D34303237332D342D362C502D522D33393233382D352D372C502D522D33383837382D322D342C502D522D33383638322D332D352C502D522D33373538382D322D342C502D522D33343335352D382D31302C502D522D32363236362D342D392C502D522D32363734302D352D31302C502D522D32363833342D332D382C502D522D32343636322D31362D32322C502D522D32373437392D362D31312C502D522D32363035362D372D31352C502D522D32373030362D372D31322C502D522D33323139312D392D31312C502D522D33303333382D332D372C502D522D33303137382D37392D38312C502D522D33303035332D382D31302C502D522D32373435382D312D352C502D522D32353832322D31362D31392C502D522D32353038332D362D392C502D522D32343639302D34352D34392C502D522D32343638392D322D352C502D522D32343636362D322D352C502D522D32343636332D362D31312C502D522D32343635392D372D31302C502D522D32333736322D352D382C502D522D32333734342D372D392C502D522D32333733392D372D392C502D522D32333733362D31342D31372C502D522D32333733342D372D392C502D522D32333733302D32312D32342C502D522D32333732332D31302D31322C502D442D33323538382D312D332C502D442D33323533342D312D332C502D442D33323532342D312D332C502D442D33323531382D312D332C502D442D33323531322D312D332C502D442D33323530392D312D332C502D442D33323438352D312D342C502D442D33323438342D312D342C502D442D33323430352D312D332C502D582D313032353438352D312D352C502D582D313033363938372D322D332C502D582D313033363137332D322D332C502D582D313033333537332D312D352C502D582D313033313539322D312D332C502D582D313033303033352D322D332C502D582D313032303536382D312D332C502D582D313030343337332D312D352C502D582D39333430372D312D352C502D582D39343332362D322D352C502D582D37383833302D342D31342C502D582D37333137392D312D372C50
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\outlook\ConfigContextData
Operation:writeName:ChunkCount
Value:
uint64_t|2
(PID) Process:(5764) OUTLOOK.EXEKey:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\outlook\ConfigContextData
Operation:writeName:1.3
Value:
2D582D37313939392D332D31312C502D522D313038373134312D342D372C502D522D313037353139392D362D342C502D522D313031333933302D342D352C502D522D35333038352D31382D31332C502D522D34373630312D31382D31332C502D522D34373331382D31302D32342C502D522D33333931362D312D352C502D522D33333538302D382D392C502D522D33313936362D32312D32352C34643065623633333A3237303232312C6A663463653839333A3330383937332C666A3265673632333A3238383530382C68666A67383232393A3238363439312C37623367633334313A3330383937352C6170705F73706563696669635F66696E645F6865616465725F74726561746D656E743A3330363139372C75637368613234373A3239353839322C75633430353A3233353331312C75637368613531333A3233333035312C7365617263685F696E696E73706563746F7277696E646F77735F66696E64696E646F633A3231323735362C69633468663131355F6C6F63616C3A3133383735362C656E61626C656E6F74657365617263683A3134393733342C75637368613636303A37363535382C502D582D313036343937332D312D352C502D582D313035313736332D322D372C502D582D313031303537322D312D332C502D582D313030303436352D312D332C502D582D3131373430302D312D332C502D582D38323439362D312D352C502D582D38323439372D312D352C502D582D3130353639372D312D392C502D582D39373434352D332D31352C502D582D39343937322D312D332C502D582D37313731322D312D352C502D582D37333132302D312D352C502D582D36323631302D312D352C502D522D313131313938342D342D352C502D522D313038343335342D382D372C502D522D313037393235342D382D372C502D522D313033353932312D342D342C502D522D35393832302D31382D3130352C502D522D36313432362D31382D392C502D522D35393432362D312D332C502D522D34363931332D31382D382C502D522D32353836372D312D362C39356167673335373A3334323230302C6D65636F6E74726F6C5F7765616B7074725F696E746567726174696F6E5F656E61626C65643A3731373736392C75783434363A3437303638332C7578666C753233343A3435323030332C75786D656469756D69636F6E6C756D696E616E63653A3335333435352C75786163633531363A3238323131382C75786163633131333A3238323131372C666C75656E746261636B7374616765726566726573683A3234363431322C6D696361666C696768743A3337373531342C7578656E613130313A3238383831382C636865636B6F75746465766963656F6E7061696E743A3132323131302C757873686F3634353A3139303337382C75786D6F643330313A35333336322C502D522D31393236322D322D31322C502D582D313234393939372D312D332C502D582D313132303036332D322D332C502D582D37363539392D312D31312C502D582D313035333231312D372D32312C502D582D313037323233302D312D332C502D582D313037323232382D312D332C502D582D313036353636392D322D332C502D582D313032393936332D332D31312C502D582D313035383638362D312D372C502D582D313036313330382D312D352C502D582D313036313333302D312D332C502D582D313036303638382D312D332C502D582D313035393439332D312D332C502D582D313035393036312D322D332C502D582D39363533312D312D352C502D582D313035343934382D312D352C502D582D313035363735312D322D332C502D582D313035353037372D322D332C502D582D313035343332302D312D332C502D582D313033303238302D322D352C502D582D313034383833362D312D332C502D582D313034373032322D322D332C502D582D313034363338312D312D332C502D582D313034363133352D322D332C502D582D39313034392D312D352C502D582D313030303139332D312D352C502D582D313034333930322D312D332C502D582D313034333737372D322D332C502D582D313034333734352D312D332C502D582D313034333030382D322D332C502D582D313034323237352D322D332C502D582D313034313335392D322D352C502D582D313034313031312D322D352C502D582D313033393834312D322D332C502D582D313033393433362D312D332C502D582D313033383733392D312D332C502D582D313033373733322D322D332C502D582D313033373139362D312D332C502D582D313033363636362D322D332C502D582D313033363534302D322D332C502D582D313033353634362D322D332C502D582D313033333333322D322D332C502D582D313031323530302D352D31382C502D582D313032383238342D322D352C502D582D313032383136332D312D332C502D582D313032373836312D312D332C502D582D313031363338372D312D372C502D582D313032373038312D322D352C502D582D313032343736372D322D332C502D582D313032313636352D322D352C502D582D313031393432352D312D332C502D582D3130373631392D312D352C502D582D313031363739372D312D332C502D582D313031343733382D312D332C502D582D313031323138372D312D352C502D582D313030363435302D312D352C502D582D313030363938302D312D332C502D582D3131373631312D312D372C502D582D313030353439302D312D332C502D582D38343331362D332D32312C502D582D313030343631362D312D332C502D582D313030343631352D312D332C502D582D313030333636312D312D332C502D582D313030333238392D312D332C502D582D313030303436372D312D332C502D582D3131353136372D312D332C502D582D39393839392D312D352C502D582D3130393637372D312D332C502D582D39343135372D312D352C502D582D39353233332D312D352C502D582D39333933362D312D332C502D582D39323832392D312D332C502D582D39323830372D312D352C502D582D39313533392D312D332C502D582D38393731332D312D352C502D582D38373235332D312D352C502D582D38353439372D312D352C502D582D38343836382D312D332C502D582D37383534382D312D332C502D582D37353234322D312D352C502D582D37373138342D312D332C502D582D36343230372D312D352C502D582D36373530392D312D332C502D452D32393636312D43312D332C502D522D313235303132392D31332D31352C502D522D313136383533322D382D362C502D522D313432362D31312D352C502D522D313134353333322D31312D342C502D522D313133373538332D382D332C502D522D313133313039372D382D342C502D522D313132303133322D32312D352C502D522D313132303039322D31342D31342C502D522D36343839312D31372D392C502D522D313131373034332D31332D352C502D522D313438352D31332D332C502D522D313130343836322D382D372C502D522D313039393737342D382D372C502D522D313039373436322D382D372C502D522D313039323635332D382D382C502D522D313039313638342D31322D31312C502D522D313039313636322D382D372C502D522D313039303639312D31322D352C502D522D313039303434342D31322D372C502D522D313038353934302D382D372C502D522D313037393733312D382D362C502D522D313037393031352D342D372C502D522D313037383833382D342D382C502D522D313037363131392D382D372C502D522D313037353038392D382D372C502D522D313036393434372D382D342C502D522D313036393537362D382D382C502D522D313036393139342D382D372C502D522D313036363636322D382D372C502D522D313036333832392D382D382C502D522D313036333430352D382D372C502D522D313036323331382D382D372C502D522D313036313735332D382D382C502D522D313035363437342D382D352C502D522D313035313137382D382D362C502D522D313034383233302D382D392C502D522D313034383032342D362D382C502D522D313034353430382D382D342C502D522D313034303631302D382D342C502D522D313033373838322D382D372C502D522D313033363934322D382D362C502D522D313033333834332D382D392C502D522D313032383633302D382D372C502D522D313032363135352D382D372C502D522D313032353934392D382D372C502D522D313032333533362D382D372C502D522D313031393633312D382D352C502D522D313031393631302D382D372C502D522D313031393038392D382D372C502D522D313031343536352D382D382C502D522D313031343434382D382D372C502D522D313031313539312D382D372C502D522D313030373238382D382D372C502D522D313030363736372D382D382C502D522D313030353137322D362D31312C502D522D313030343535302D362D31302C502D522D313030333934382D362D31362C502D522D3131373937372D382D372C502D522D3131373131312D382D382C502D522D3131363638392D382D372C502D522D3131363638382D382D382C502D522D3131313836362D382D372C502D522D3130303137392D382D372C502D522D39373036312D382D382C502D522D39353030372D31342D32322C502D522D37373337342D312D382C502D522D35333730302D31362D32302C502D522D34393836332D312D332C502D522D33353837332D32302D32302C502D522D33353030362D342D342C502D522D32303037302D312D392C35613736303236303A3539323137352C39353631313738363A3437373132342C776F656E613433343A3339333639332C63376936623330373A3435333535352C32363431663137383A3432383038382C3234336A333537393A3530393731332C65303333613931303A3430313937352C62666934383438392D74726561746D656E742D6661737465726E6F6E756C6C6E6F76616C69646174696F6E3A3434323034372C61393737383234373A3338333230382C6E6F69646C6575696D696E746572727570743A3636373533312C61393868343738313A3438303336342C66316935363731393A3339323030392C33393339673236363A3337383237312C63686A66613938353A3339333230352C776F636F6E3635363A3332373833302C32356638353838373A3334303332352C61393130303237393A3335393236322C65636234633430393A3339363033362C37313968693430333A3434373635332C616868626A3334363A3238313730312C31393831313234313A3333383635362C68336230353239383A3333383335322C626A6668663534313A3434383431392C69376839663434373A3430383635332C776F636C653737353A3230313535312C6E657572616C766F69636573657276696365726571756573747468726F74746C696E67656E61626C65643A3632373035302C62396436303131353A3338363537362C376A6434623137373A3732373938302C666978626164626F6F6B6D61726B3A3339313836392C69626233303434333A3239393031342C67316836623639323A3333343638322C6438336A343731383A3238383833302C6C696E6B6D6F72653A3332383238302C656E61626C656D657267656269626F7074696D697A6174696F6E3A3333323032332C353869616A3234333A3332343631382C35346739343835373A3434303232362C65306562623333303A3335343236332C34663366623834333A3239313233392C6E756C6C636865636B706974627374663A3237393030382C6738326A383837373A3239343637342C656E61626C657468656D65666F6E7475706461746574726561746D656E743A3434383333322C6E6F6F647433743A3530323939302C776F37333874726561746D656E743A3236323436352C7764736478656469746F726472696C6C696E2D743A3333373532332C776F6D74797969656C643A3434383336382C63373134693738333A3238313639362C616C6C6F776172746F6D657267653A3237363630342C38356265313539363A3435333535382C64376A63623730323A3236383539312C69673665653838373A3338393731302C776F64656C3233353A3337393536362C776F6675733934373A3435333533322C776F6669783636343A3235343634352C776F3930363A3335363638362C776F7468723639343A3335353931332C776F77696E3839353A3335373435332C776F6C61793735353A3232373335372C776F3638373A3139373237332C776F7573653138393A3436333432302C72656164616C6F75646E657572616C766F696365656E61626C65646E65773A3533303739332C776F6368653636383A3431383330342C66656E61626C65636F6E746578746D656E75656E747279706F696E743A3338303031322C776F656E613736393A3435343335332C776F6368753632303A3232383530382C776F736B693330363A3234363338312C776F3338303735343A3433363032352C776F7573653836373A3138303037382C776F656E613336333A3432343334352C776F6C61793535303A3134343334382C776F656E613639353A3139363434392C776F6C61793131313A3239353930302C776F636F6E3537383A3330333138312C776F636F763435333A3134343439362C776F3532393835333A3137363831322C776F7465733331373A3337373530342C776F7573653433383A3132343234322C776F6C61793334303A3132343232332C776F72646F64663133646576696365733A3132323233362C776F616C773830393A3132343233322C776F6272653535363A3139363035392C776F636F6C3933363A38303033312C776F6966693136333A37313830322C776F656E613238383A3234393235352C776F656E613736393A3435343335332C776F6675733934373A3435333533322C62666934383438392D74726561746D656E742D6661737465726E6F6E756C6C6E6F76616C69646174696F6E3A3434323034372C776F656E613336333A3432343334352C776F6368653636383A3431383330342C502D522D313538333836352D312D362C502D522D313536333934352D312D382C502D522D313132383633302D312D372C502D522D313039383431322D312D352C502D522D313039313236372D312D35372C502D522D38313732302D312D322C502D522D35383430362D312D352C502D442D35303639372D322D342C502D442D32393731392D312D312C502D442D32393731382D312D312C502D442D32393539332D312D36222C2022434322203A20227374643A3A77737472696E677C4445222C2022446566436F6E667322203A20227374643A3A77737472696E677C6F6673683663326231746C61316133312C6F666372756934797664756C626633312C6F6668706578336A7A6E65706F6F33312C6F6670696F796766716D756673743331222C202245787054696D6522203A2022696E7436345F747C31373534303333383139222C20224554616722203A20227374643A3A77737472696E677C5C22516A39526B2B734E517472372F437934516B71305273576E777A756A4D7030484D7745636E596E677050383D5C22222C202246434D617022203A205B207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E4368616E6765476174655F446F6E74547275737456424156617269616E74446F75626C6556616C7565222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E4368616E6765476174655F446F6E74547275737456424156617269616E74446F75626C6556616C75654E6577222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E4368616E6765476174655F4E6577556E69636F6465496E556E697175654964656E746966696572436F6C756D6E222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E4368616E6765476174655F556E69636F6465496E556E697175654964656E746966696572436F6C756D6E222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E43757272656E6379446563696D616C506C61636573466978222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E446F6E745265696E697469616C697A654D736F34222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E46697844656C657465644272757368497373756573222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4163636573732E4D6163726F5369676E696E67222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E44756D6D79443244446576696365436F6E74657874466C75736843616C6C4F6E44656D616E6432222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E4764694861726477617265416363656C65726174696F6E222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E5363686564756C654173796E63436F6D6D6974416674657242696E64696E67536B697050726F6A656374222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E536574466C697054657874757265557064617465222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E536B69705A6F6F6D416E6450726F7061676174654F6E496E76697369626C655363726F6C6C696E674C61796572222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E53796E6368726F6E6F757353686F7757696E646F77496E4D6F7265436173657332222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E5573654944697265637433644465766963654163636573735633222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E55736550726976617465417069546F436F6D706C657465416E696D6174696F6E734F6E53637265656E4F63636C75646564222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E41697253706163652E55736557696E436F6D70496E57696E3332222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4170706C652E5469636B6574436163686544697361626C6564222C20225622203A2022626F6F6C7C3022207D2C207B20224622203A20224D6963726F736F66742E4F66666963652E4175674C6F6F702E456E61626C6542617463684F7074696F6E73222C20225622203A2022626F6F6C7C3122207D2C207B20224622203A20224D69
Executable files
0
Suspicious files
209
Text files
59
Unknown types
30

Dropped files

PID
Process
Filename
Type
5764OUTLOOK.EXEC:\Users\admin\Documents\Outlook Files\Outlook1.pst
MD5:
SHA256:
5764OUTLOOK.EXEC:\Users\admin\AppData\Local\Microsoft\TokenBroker\Cache\089d66ba04a8cec4bdc5267f42f39cf84278bb67.tbresbinary
MD5:371014BD7561325F829D26A1FE047CF0
SHA256:E2E2E9A0940B17D1D8C3C20F90DD1806EA015A02FADE643501DB3996ABCC56EC
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\PersistentOriginTrials\LOG.old~RF193dea.TMP
MD5:
SHA256:
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\PersistentOriginTrials\LOG.old
MD5:
SHA256:
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Variationsbinary
MD5:CDDDC745A8C954DC438C931889999BDB
SHA256:3DC9043838386F5363AC96A01477CF3163B5118B80191576A11B32CE9894314C
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\discounts_db\LOG.old~RF193e18.TMP
MD5:
SHA256:
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\discounts_db\LOG.old
MD5:
SHA256:
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\parcel_tracking_db\LOG.old~RF193e18.TMP
MD5:
SHA256:
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\commerce_subscription_db\LOG.old~RF193e18.TMP
MD5:
SHA256:
2040msedge.exeC:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\parcel_tracking_db\LOG.old
MD5:
SHA256:
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
13
TCP/UDP connections
60
DNS requests
59
Threats
0

HTTP requests

PID
Process
Method
HTTP Code
IP
URL
CN
Type
Size
Reputation
3948
svchost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D
unknown
whitelisted
5764
OUTLOOK.EXE
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAn5bsKVVV8kdJ6vHl3O1J0%3D
unknown
whitelisted
5944
MoUsoCoreWorker.exe
GET
200
23.216.77.28:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
5944
MoUsoCoreWorker.exe
GET
200
23.35.229.160:80
http://www.microsoft.com/pkiops/crl/MicSecSerCA2011_2011-10-18.crl
unknown
whitelisted
4160
SIHClient.exe
GET
200
23.35.229.160:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Product%20Root%20Certificate%20Authority%202018.crl
unknown
whitelisted
4160
SIHClient.exe
GET
200
23.35.229.160:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Update%20Secure%20Server%20CA%202.1.crl
unknown
whitelisted
5628
msedge.exe
GET
200
150.171.28.11:80
http://edge.microsoft.com/browsernetworktime/time/1/current?cup2key=2:K83_e9zZ4waQlHtN0K1DFmDvrm5zaIwGWcFjYpDURD0&cup2hreq=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
unknown
whitelisted
8104
svchost.exe
HEAD
200
199.232.214.172:80
http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/bf8090eb-6e5c-4c51-9250-5bf9b46cf160?P1=1754231978&P2=404&P3=2&P4=VTvnSQG5KRcQcQb6aRuVfPguvZl%2bLTZylC2VJ9gxx89KckHZ3JOEVNPxcRYFg2b1lnwp6G1sVrTgfMrEtPKhwg%3d%3d
unknown
whitelisted
2940
svchost.exe
GET
200
69.192.161.44:80
http://x1.c.lencr.org/
unknown
whitelisted
8104
svchost.exe
GET
206
199.232.214.172:80
http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/bf8090eb-6e5c-4c51-9250-5bf9b46cf160?P1=1754231978&P2=404&P3=2&P4=VTvnSQG5KRcQcQb6aRuVfPguvZl%2bLTZylC2VJ9gxx89KckHZ3JOEVNPxcRYFg2b1lnwp6G1sVrTgfMrEtPKhwg%3d%3d
unknown
whitelisted
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4
System
192.168.100.255:137
whitelisted
5944
MoUsoCoreWorker.exe
51.124.78.146:443
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
1352
RUXIMICS.exe
51.124.78.146:443
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
1268
svchost.exe
51.124.78.146:443
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
5764
OUTLOOK.EXE
52.123.128.14:443
ecs.office.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
whitelisted
4
System
192.168.100.255:138
whitelisted
5764
OUTLOOK.EXE
23.48.23.18:443
omex.cdn.office.net
Akamai International B.V.
DE
whitelisted
5764
OUTLOOK.EXE
52.111.231.8:443
messaging.lifecycle.office.com
MICROSOFT-CORP-MSN-AS-BLOCK
FR
whitelisted
5764
OUTLOOK.EXE
72.145.35.42:443
nleditor.osi.office.net
MICROSOFT-CORP-MSN-AS-BLOCK
US
whitelisted
3948
svchost.exe
40.126.32.133:443
login.live.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted

DNS requests

Domain
IP
Reputation
google.com
  • 142.250.186.110
whitelisted
ecs.office.com
  • 52.123.128.14
  • 52.123.129.14
whitelisted
omex.cdn.office.net
  • 23.48.23.18
  • 23.48.23.30
whitelisted
messaging.lifecycle.office.com
  • 52.111.231.8
whitelisted
nleditor.osi.office.net
  • 72.145.35.42
whitelisted
login.live.com
  • 40.126.32.133
  • 20.190.160.3
  • 20.190.160.131
  • 40.126.32.74
  • 20.190.160.4
  • 20.190.160.128
  • 40.126.32.136
  • 20.190.160.14
whitelisted
ocsp.digicert.com
  • 184.30.131.245
whitelisted
self.events.data.microsoft.com
  • 20.42.65.85
  • 40.79.173.41
whitelisted
settings-win.data.microsoft.com
  • 4.231.128.59
whitelisted
crl.microsoft.com
  • 23.216.77.28
  • 23.216.77.6
whitelisted

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
79839328.eml