SWAInstaller.exe
- Filename:
- SWAInstaller.exe
- md5:
- 839ec3dc6f1d18e320aa9731dd9de5d7
- sha1:
- e3cc8b1d9244f4ec8c3e84f265d85e4e7fe79291
- sha256:
- eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a
- Filetype:
- PE32 executable (GUI) Intel 80386, for MS Windows, ...
- Size (Bytes):
- 2857887
- Classification:
- malicious
- Indexed:
- Sun Jul 27 2025 06:28:20 GMT+0000 (22 days ago)
- Last modified:
- Sun Jul 27 2025 09:45:31 GMT+0000 (22 days ago)
Sample information
33
Antivirus detections1
IDS alerts27
Processes0
Http events3
Contacted hosts3
DNS Requests10
Score
Current activity of this Sample
Blacklist timeline
First seen: Sun Jul 27 2025 06:45:04 GMT+0000
Last seen: Sun Jul 27 2025 09:45:31 GMT+0000
Period: 3 hours
Last seen: Sun Jul 27 2025 09:45:31 GMT+0000
Period: 3 hours
Hashes
In depth details
Dates
Tags
Developers can check API Specification here:
Request:
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/sample/eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a
Request:
Alternatively you can use Maltiverse Python3 Library:
import requests
import json
url = 'https://api.maltiverse.com/sample/eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))
Request:
$url = 'https://api.maltiverse.com/sample/eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a'
$headers = @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response
Response:
{
"antivirus": [
{
"description": "Gen:Variant.Marsilia.183724",
"name": "ALYac"
},
{
"description": "Malicious",
"name": "APEX"
},
{
"description": "Win32:MalwareX-gen [Misc]",
"name": "AVG"
},
{
"description": "Malware/Win.Generic.C5771439",
"name": "AhnLab-V3"
},
{
"description": "Trojan.Marsilia.D2CDAC",
"name": "Arcabit"
},
{
"description": "Win32:MalwareX-gen [Misc]",
"name": "Avast"
},
{
"description": "Gen:Variant.Marsilia.183724",
"name": "BitDefender"
},
{
"description": "W32.AIDetectMalware",
"name": "Bkav"
},
{
"description": "Trojan.Agent",
"name": "CAT-QuickHeal"
},
{
"description": "exe.trojan.generic",
"name": "CTX"
},
{
"description": "Unsafe",
"name": "Cylance"
},
{
"description": "MALICIOUS",
"name": "DeepInstinct"
},
{
"description": "Gen:Variant.Marsilia.183724 (B)",
"name": "Emsisoft"
},
{
"description": "W32/PossibleThreat",
"name": "Fortinet"
},
{
"description": "Gen:Variant.Marsilia.183724",
"name": "GData"
},
{
"description": "Detected",
"name": "Google"
},
{
"description": "Trojan.IL.MSILZilla",
"name": "Ikarus"
},
{
"description": "Trojan.Win32.Generic.4!c",
"name": "Lionic"
},
{
"description": "Trojan.Agent",
"name": "Malwarebytes"
},
{
"description": "Trojan.Malware.388742767.susgen",
"name": "MaxSecure"
},
{
"description": "ti!EEF1C72593EE",
"name": "McAfeeD"
},
{
"description": "Gen:Variant.Marsilia.183724",
"name": "MicroWorld-eScan"
},
{
"description": "PUA:Win32/GameHack",
"name": "Microsoft"
},
{
"description": "generic.ml",
"name": "Paloalto"
},
{
"description": "Trj/Chgt.AD",
"name": "Panda"
},
{
"description": "Trojan.Win32.Agent.Vu3j",
"name": "Sangfor"
},
{
"description": "BehavesLike.Win32.Dropper.vc",
"name": "Skyhigh"
},
{
"description": "Generic Reputation PUA (PUA)",
"name": "Sophos"
},
{
"description": "Trojan.Gen.MBT",
"name": "Symantec"
},
{
"description": "Artemis!839EC3DC6F1D",
"name": "TrellixENS"
},
{
"description": "Gen:Variant.Marsilia.183724",
"name": "VIPRE"
},
{
"description": "W32/MSIL_Agent.GCC.gen!Eldorado",
"name": "Varist"
},
{
"description": "Trojan.Win.Z.Wacatac.2857887",
"name": "ViRobot"
}
],
"blacklist": [
{
"count": 16,
"description": "Generic Malware",
"first_seen": "2025-07-27 06:45:04",
"last_seen": "2025-07-27 09:45:31",
"ref": [
21745
],
"source": "Hybrid-Analysis"
}
],
"classification": "malicious",
"contacted_host": [
"104.20.29.150",
"104.21.112.1",
"104.17.24.14"
],
"creation_time": "2025-07-27 06:28:20",
"dns_request": [
"api.swa-recloud.fun",
"cdnjs.cloudflare.com",
"pastebin.com"
],
"filename": [
"SWAInstaller.exe"
],
"filetype": "PE32 executable (GUI) Intel 80386, for MS Windows, ...",
"is_alive": false,
"is_cdn": false,
"is_cnc": false,
"is_distributing_malware": false,
"is_hosting": false,
"is_iot_threat": false,
"is_known_attacker": false,
"is_known_scanner": false,
"is_mining_pool": false,
"is_open_proxy": false,
"is_phishing": false,
"is_sinkhole": false,
"is_storing_phishing": false,
"is_tor_node": false,
"is_vpn_node": false,
"md5": "839ec3dc6f1d18e320aa9731dd9de5d7",
"modification_time": "2025-07-27 09:45:31",
"network_suricata_alert": [
{
"category": "Generic Protocol Command Decode",
"description": "SURICATA IPv4 invalid checksum",
"event": "135.234.160.245:443 (TCP)",
"sid": "2200073"
}
],
"process_list": [
{
"name": "SWAInstaller.exe",
"normalizedpath": "C:\\SWAInstaller.exe",
"sha256": "eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a",
"uid": "00000000-00000788"
},
{
"commandline": "/SL5=\"$150090,1804225,1020416,C:\\SWAInstaller.exe\"",
"name": "SWAInstaller.tmp",
"normalizedpath": "%TEMP%\\is-8JMIV.tmp\\SWAInstaller.tmp",
"sha256": "4b1ce07e412d11687fd57154281fbadfc513dc8d6179cb70188ce8e8a2c53d38",
"uid": "00000000-00007872"
},
{
"name": "SWA.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\SWA\\SWA.exe",
"sha256": "210426ff867ad8dec98984248336de5699135e2d54358af4eb6bba88b39caf3b",
"uid": "00000000-00008044"
},
{
"commandline": "--embedded-browser-webview=1 --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --noerrdialogs --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=8044.7768.14924557140380060008 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00008016"
},
{
"commandline": "--type=crashpad-handler --user-data-dir=%APPDATA%\\SWA_V2\\EBWebView /prefetch:4 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194 --monitor-self-annotation=ptype=crashpad-handler --database=%APPDATA%\\SWA_V2\\EBWebView\\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=121.0.6167.140 \"--annotation=exe=%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe\" --annotation=plat=Win64 \"--annotation=prod=Edge WebView2\" --annotation=ver=121.0.2277.106 --initial-client-data=0x1e0,0x1e4,0x1e8,0x1bc,0x1f8,0x7ff87d2fbf98,0x7ff87d2fbfa4,0x7ff87d2fbfb0",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00007696"
},
{
"name": "SWA.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\SWA\\SWA.exe",
"sha256": "210426ff867ad8dec98984248336de5699135e2d54358af4eb6bba88b39caf3b",
"uid": "00000000-00002784"
},
{
"commandline": "--embedded-browser-webview=1 --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --noerrdialogs --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=2784.9084.9289148575117890195 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00001316"
},
{
"commandline": "--type=crashpad-handler --user-data-dir=%APPDATA%\\SWA_V2\\EBWebView /prefetch:4 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194 --monitor-self-annotation=ptype=crashpad-handler --database=%APPDATA%\\SWA_V2\\EBWebView\\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=121.0.6167.140 \"--annotation=exe=%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe\" --annotation=plat=Win64 \"--annotation=prod=Edge WebView2\" --annotation=ver=121.0.2277.106 --initial-client-data=0x1e4,0x1e8,0x1ec,0x1c4,0x1f8,0x7ff87d2fbf98,0x7ff87d2fbfa4,0x7ff87d2fbfb0",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00006288"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1696 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00006752"
},
{
"commandline": "--type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=2188 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:3 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00008444"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=2688 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00004068"
},
{
"commandline": "--type=renderer --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags=\"--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=\" --time-ticks-at-unix-epoch=-1753619985833969 --launch-time-ticks=3007065501 --mojo-platform-channel-handle=3292 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194 /prefetch:1",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00006136"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=3420 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00008456"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3548 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00008788"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=3744 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00005960"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3668 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00001856"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1996 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00001840"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3668 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00001892"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1984 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00003540"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3536 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00006392"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=3540 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00002340"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3536 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00009132"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=disabled --mojo-platform-channel-handle=3500 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00005592"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=4428 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00007608"
},
{
"commandline": "--type=gpu-process --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=disabled --mojo-platform-channel-handle=2772 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00007600"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3616 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00004620"
},
{
"commandline": "--type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir=\"%APPDATA%\\SWA_V2\\EBWebView\" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=4428 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194",
"name": "msedgewebview2.exe",
"normalizedpath": "%PROGRAMFILES%\\(x86)\\Microsoft\\EdgeWebView\\Application\\121.0.2277.106\\msedgewebview2.exe",
"sha256": "09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750",
"uid": "00000000-00000988"
}
],
"score": 10,
"scoring_executed_time": "2025-07-27 06:45:05",
"sha1": "e3cc8b1d9244f4ec8c3e84f265d85e4e7fe79291",
"sha256": "eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a",
"size": 2857887,
"tag": [
"malicious"
],
"type": "sample"
}
IDS Alerts
| SID | Category | Description | Event |
|---|---|---|---|
| 2200073 | Generic Protocol Command Decode | SURICATA IPv4 invalid checksum | 135.234.160.245:443 (TCP) |
Network contacts
| DNS Requests |
|---|
| api.swa-recloud.fun |
| cdnjs.cloudflare.com |
| pastebin.com |
| Contacted Hosts |
|---|
| 104.20.29.150 |
| 104.21.112.1 |
| 104.17.24.14 |
Antivirus positives
| Antivirus | Threat |
|---|---|
| ALYac | Gen:Variant.Marsilia.183724 |
| APEX | Malicious |
| AVG | Win32:MalwareX-gen [Misc] |
| AhnLab-V3 | Malware/Win.Generic.C5771439 |
| Arcabit | Trojan.Marsilia.D2CDAC |
| Avast | Win32:MalwareX-gen [Misc] |
| BitDefender | Gen:Variant.Marsilia.183724 |
| Bkav | W32.AIDetectMalware |
| CAT-QuickHeal | Trojan.Agent |
| CTX | exe.trojan.generic |
| Cylance | Unsafe |
| DeepInstinct | MALICIOUS |
| Emsisoft | Gen:Variant.Marsilia.183724 (B) |
| Fortinet | W32/PossibleThreat |
| GData | Gen:Variant.Marsilia.183724 |
| Detected | |
| Ikarus | Trojan.IL.MSILZilla |
| Lionic | Trojan.Win32.Generic.4!c |
| Malwarebytes | Trojan.Agent |
| MaxSecure | Trojan.Malware.388742767.susgen |
| McAfeeD | ti!EEF1C72593EE |
| MicroWorld-eScan | Gen:Variant.Marsilia.183724 |
| Microsoft | PUA:Win32/GameHack |
| Paloalto | generic.ml |
| Panda | Trj/Chgt.AD |
| Sangfor | Trojan.Win32.Agent.Vu3j |
| Skyhigh | BehavesLike.Win32.Dropper.vc |
| Sophos | Generic Reputation PUA (PUA) |
| Symantec | Trojan.Gen.MBT |
| TrellixENS | Artemis!839EC3DC6F1D |
| VIPRE | Gen:Variant.Marsilia.183724 |
| Varist | W32/MSIL_Agent.GCC.gen!Eldorado |
| ViRobot | Trojan.Win.Z.Wacatac.2857887 |
Process list
- uid
- 00000000-00000788
- commandline
- name
- SWAInstaller.exe
- normalizedpath
- C:\SWAInstaller.exe
- sha256
- eef1c72593ee5604db1e35225db8f8c1b762a4fad1f4c6cb5a3024f6b00ff36a
- uid
- 00000000-00007872
- commandline
- /SL5="$150090,1804225,1020416,C:\SWAInstaller.exe"
- name
- SWAInstaller.tmp
- normalizedpath
- %TEMP%\is-8JMIV.tmp\SWAInstaller.tmp
- sha256
- 4b1ce07e412d11687fd57154281fbadfc513dc8d6179cb70188ce8e8a2c53d38
- uid
- 00000000-00008044
- commandline
- name
- SWA.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\SWA\SWA.exe
- sha256
- 210426ff867ad8dec98984248336de5699135e2d54358af4eb6bba88b39caf3b
- uid
- 00000000-00008016
- commandline
- --embedded-browser-webview=1 --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=8044.7768.14924557140380060008 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00007696
- commandline
- --type=crashpad-handler --user-data-dir=%APPDATA%\SWA_V2\EBWebView /prefetch:4 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194 --monitor-self-annotation=ptype=crashpad-handler --database=%APPDATA%\SWA_V2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=121.0.6167.140 "--annotation=exe=%PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=121.0.2277.106 --initial-client-data=0x1e0,0x1e4,0x1e8,0x1bc,0x1f8,0x7ff87d2fbf98,0x7ff87d2fbfa4,0x7ff87d2fbfb0
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00002784
- commandline
- name
- SWA.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\SWA\SWA.exe
- sha256
- 210426ff867ad8dec98984248336de5699135e2d54358af4eb6bba88b39caf3b
- uid
- 00000000-00001316
- commandline
- --embedded-browser-webview=1 --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=2784.9084.9289148575117890195 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00006288
- commandline
- --type=crashpad-handler --user-data-dir=%APPDATA%\SWA_V2\EBWebView /prefetch:4 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194 --monitor-self-annotation=ptype=crashpad-handler --database=%APPDATA%\SWA_V2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=121.0.6167.140 "--annotation=exe=%PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=121.0.2277.106 --initial-client-data=0x1e4,0x1e8,0x1ec,0x1c4,0x1f8,0x7ff87d2fbf98,0x7ff87d2fbfa4,0x7ff87d2fbfb0
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00006752
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1696 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00008444
- commandline
- --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=2188 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:3 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00004068
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=2688 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00006136
- commandline
- --type=renderer --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --time-ticks-at-unix-epoch=-1753619985833969 --launch-time-ticks=3007065501 --mojo-platform-channel-handle=3292 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194 /prefetch:1
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00008456
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=3420 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00008788
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3548 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00005960
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=3744 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00001856
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3668 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00001840
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1996 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00001892
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3668 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00003540
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1984 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00006392
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3536 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00002340
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=3540 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00009132
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3536 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00005592
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=disabled --mojo-platform-channel-handle=3500 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00007608
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=4428 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00007600
- commandline
- --type=gpu-process --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --use-gl=disabled --mojo-platform-channel-handle=2772 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:2 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00004620
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=3616 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750
- uid
- 00000000-00000988
- commandline
- --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="%APPDATA%\SWA_V2\EBWebView" --webview-exe-name=SWA.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=0 --edge-webview-custom-scheme --no-appcompat-clear --mojo-platform-channel-handle=4428 --field-trial-handle=1896,i,16986704949607976743,18160559271589625100,262144 --enable-features=MojoIpcz --variations-seed-version /prefetch:8 /pfhostedapp:8afb85c1d086e8bc459d81d088dea06c685db194
- name
- msedgewebview2.exe
- normalizedpath
- %PROGRAMFILES%\(x86)\Microsoft\EdgeWebView\Application\121.0.2277.106\msedgewebview2.exe
- sha256
- 09c07af5ebe918374e23a515e8b22047617c0c320e21aaaf7a18fc1aedec9750