Malware Analysis Report

2024-11-13 14:22

Sample ID 220525-3zn4ysaggm
Target 53b85d35bd75f81e319b73b23e5365fa
SHA256 bf80ff95259a0b37ed82b6f8ef0a4e5e46f43826c658a3ca293940501acfeade
Tags
44caliber spyware stealer
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V6

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

bf80ff95259a0b37ed82b6f8ef0a4e5e46f43826c658a3ca293940501acfeade

Threat Level: Known bad

The file 53b85d35bd75f81e319b73b23e5365fa was found to be: Known bad.

Malicious Activity Summary

44caliber spyware stealer

44caliber family

44Caliber

Reads user/profile data of web browsers

Accesses cryptocurrency files/wallets, possible credential harvesting

Looks up external IP address via web service

Checks processor information in registry

Suspicious behavior: EnumeratesProcesses

Suspicious use of AdjustPrivilegeToken

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2022-05-25 23:57

Signatures

44caliber family

44caliber

Analysis: behavioral1

Detonation Overview

Submitted

2022-05-25 23:57

Reported

2022-05-25 23:59

Platform

win7-20220414-en

Max time kernel

40s

Max time network

43s

Command Line

"C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe"

Signatures

44Caliber

stealer 44caliber

Reads user/profile data of web browsers

spyware stealer

Accesses cryptocurrency files/wallets, possible credential harvesting

spyware

Looks up external IP address via web service

Description Indicator Process Target
N/A freegeoip.app N/A N/A
N/A freegeoip.app N/A N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\Description\System\CentralProcessor\0 C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Identifier C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe N/A

Processes

C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe

"C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe"

Network

Country Destination Domain Proto
US 8.8.8.8:53 freegeoip.app udp
US 188.114.97.3:443 freegeoip.app tcp
US 8.8.8.8:53 ipbase.com udp
US 75.2.60.5:443 ipbase.com tcp

Files

memory/1684-54-0x00000000008D0000-0x000000000091A000-memory.dmp

Analysis: behavioral2

Detonation Overview

Submitted

2022-05-25 23:57

Reported

2022-05-25 23:59

Platform

win10v2004-20220414-en

Max time kernel

144s

Max time network

141s

Command Line

"C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe"

Signatures

44Caliber

stealer 44caliber

Reads user/profile data of web browsers

spyware stealer

Accesses cryptocurrency files/wallets, possible credential harvesting

spyware

Looks up external IP address via web service

Description Indicator Process Target
N/A freegeoip.app N/A N/A
N/A freegeoip.app N/A N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\Description\System\CentralProcessor\0 C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Identifier C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe N/A

Processes

C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe

"C:\Users\Admin\AppData\Local\Temp\53b85d35bd75f81e319b73b23e5365fa.exe"

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k appmodel -p -s camsvc

Network

Country Destination Domain Proto
US 8.8.8.8:53 freegeoip.app udp
US 188.114.97.3:443 freegeoip.app tcp
US 8.8.8.8:53 ipbase.com udp
US 99.83.231.61:443 ipbase.com tcp
IE 20.54.110.249:443 tcp
US 8.8.8.8:53 storesdk.dsx.mp.microsoft.com udp
FR 2.18.109.224:443 storesdk.dsx.mp.microsoft.com tcp
US 8.8.8.8:53 store-images.s-microsoft.com udp
NL 104.123.41.133:80 store-images.s-microsoft.com tcp
NL 104.123.41.133:80 store-images.s-microsoft.com tcp
NL 104.123.41.133:80 store-images.s-microsoft.com tcp
US 8.8.8.8:53 tsfe.trafficshaping.dsp.mp.microsoft.com udp
NL 104.123.41.133:80 store-images.s-microsoft.com tcp
IE 20.54.110.119:443 tsfe.trafficshaping.dsp.mp.microsoft.com tcp
NL 104.123.41.133:80 store-images.s-microsoft.com tcp
NL 104.123.41.133:80 store-images.s-microsoft.com tcp
IE 20.54.110.119:443 tsfe.trafficshaping.dsp.mp.microsoft.com tcp
US 8.8.8.8:53 dl.delivery.mp.microsoft.com udp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 tlu.dl.delivery.mp.microsoft.com udp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 2.tlu.dl.delivery.mp.microsoft.com udp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 4.tlu.dl.delivery.mp.microsoft.com udp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 87.248.202.1:80 4.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.148:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 tlu.dl.delivery.mp.microsoft.com udp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 2.tlu.dl.delivery.mp.microsoft.com udp
FR 2.22.22.97:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 11.tlu.dl.delivery.mp.microsoft.com udp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
US 93.184.221.240:80 11.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.146:80 2.tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
NL 104.110.191.136:80 tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 2.tlu.dl.delivery.mp.microsoft.com udp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
US 204.79.197.200:443 tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp
FR 2.22.22.136:80 2.tlu.dl.delivery.mp.microsoft.com tcp

Files

memory/2324-130-0x0000000000F70000-0x0000000000FBA000-memory.dmp

memory/2324-131-0x00007FFE71AD0000-0x00007FFE72591000-memory.dmp