Analysis Overview
SHA256
8634d9e5e69c0eb0758fd4d57ee58fc53c57afc1b61d790493e725ff8f6b79f2
Threat Level: Known bad
The file Client.exe was found to be: Known bad.
Malicious Activity Summary
Quasar family
Quasar RAT
Quasar payload
Legitimate hosting services abused for malware hosting/C2
Unsigned PE
Suspicious use of AdjustPrivilegeToken
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2023-08-15 08:50
Signatures
Quasar family
Quasar payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2023-08-15 08:50
Reported
2023-08-15 09:02
Platform
win10-20230703-en
Max time kernel
700s
Max time network
707s
Command Line
Signatures
Quasar RAT
Quasar payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Legitimate hosting services abused for malware hosting/C2
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: SeDebugPrivilege | N/A | C:\Users\Admin\AppData\Local\Temp\Client.exe | N/A |
Processes
C:\Users\Admin\AppData\Local\Temp\Client.exe
"C:\Users\Admin\AppData\Local\Temp\Client.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 117.38.66.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ipwho.is | udp |
| CA | 108.181.98.179:443 | ipwho.is | tcp |
| US | 8.8.8.8:53 | 126.137.241.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.98.181.108.in-addr.arpa | udp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 255.247.28.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.229.111.52.in-addr.arpa | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 9.57.101.20.in-addr.arpa | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 27.73.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 178.115.69.3.in-addr.arpa | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 220.157.69.3.in-addr.arpa | udp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 119.171.68.3.in-addr.arpa | udp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
Files
memory/3532-122-0x00000000006E0000-0x0000000000A04000-memory.dmp
memory/3532-123-0x00007FFB94000000-0x00007FFB949EC000-memory.dmp
memory/3532-124-0x0000000002BC0000-0x0000000002BD0000-memory.dmp
memory/3532-125-0x000000001B960000-0x000000001B9B0000-memory.dmp
memory/3532-126-0x000000001BA70000-0x000000001BB22000-memory.dmp
memory/3532-129-0x000000001B930000-0x000000001B942000-memory.dmp
memory/3532-130-0x000000001BB70000-0x000000001BBAE000-memory.dmp
memory/3532-131-0x00007FFB94000000-0x00007FFB949EC000-memory.dmp
memory/3532-132-0x000000001B9B0000-0x000000001BA41000-memory.dmp
memory/3532-133-0x0000000002BC0000-0x0000000002BD0000-memory.dmp
memory/3532-139-0x000000001B9B0000-0x000000001BA41000-memory.dmp
memory/3532-147-0x000000001B9B0000-0x000000001BA41000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2023-08-15 08:50
Reported
2023-08-15 09:02
Platform
win10v2004-20230703-en
Max time kernel
707s
Max time network
711s
Command Line
Signatures
Quasar RAT
Quasar payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Legitimate hosting services abused for malware hosting/C2
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: SeDebugPrivilege | N/A | C:\Users\Admin\AppData\Local\Temp\Client.exe | N/A |
Processes
C:\Users\Admin\AppData\Local\Temp\Client.exe
"C:\Users\Admin\AppData\Local\Temp\Client.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 158.240.127.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.136.241.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 108.211.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.38.66.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ipwho.is | udp |
| CA | 108.181.98.179:443 | ipwho.is | tcp |
| US | 8.8.8.8:53 | 179.98.181.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.23.12.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.136.104.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.164.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.81.21.72.in-addr.arpa | udp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 220.157.69.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.151.224.20.in-addr.arpa | udp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.157.220:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 3.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 109.239.197.18.in-addr.arpa | udp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 18.197.239.109:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 178.115.69.3.in-addr.arpa | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 255.247.28.52.in-addr.arpa | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.66.38.117:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 119.171.68.3.in-addr.arpa | udp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.68.171.119:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 3.69.115.178:15209 | 6.tcp.eu.ngrok.io | tcp |
| US | 8.8.8.8:53 | 6.tcp.eu.ngrok.io | udp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
| DE | 52.28.247.255:15209 | 6.tcp.eu.ngrok.io | tcp |
Files
memory/2960-133-0x0000000000820000-0x0000000000B44000-memory.dmp
memory/2960-134-0x00007FFE31A30000-0x00007FFE324F1000-memory.dmp
memory/2960-135-0x000000001B880000-0x000000001B890000-memory.dmp
memory/2960-136-0x000000001BAE0000-0x000000001BB30000-memory.dmp
memory/2960-137-0x000000001BBF0000-0x000000001BCA2000-memory.dmp
memory/2960-140-0x000000001BB30000-0x000000001BB42000-memory.dmp
memory/2960-141-0x000000001BB90000-0x000000001BBCC000-memory.dmp
memory/2960-142-0x00007FFE31A30000-0x00007FFE324F1000-memory.dmp
memory/2960-143-0x000000001B880000-0x000000001B890000-memory.dmp