Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4190582ded...8.html

windows7-x64

1

4190582ded...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    128s
  • max time network
    140s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/05/2024, 12:53 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4190582dedc2d6834cab9b5d109b877f_JaffaCakes118.html

  • Size

    74KB

  • MD5

    4190582dedc2d6834cab9b5d109b877f

  • SHA1

    473ce1b7620cbef884a5c998a94bdb6090a5f1e1

  • SHA256

    c2cce7fc1b10e4a44bb0a35b5c2958a276ed4164f21cb7d770412d2df965e4a6

  • SHA512

    14f8177b96dd4a339ae9fb7fc2535cb66c51c3551f4b5df7f851667c3da9266b587a091222dc1380e3d78695e0a3a748444811202664f77147e4fcc8a0df5350

  • SSDEEP

    768:Ji7gcMiR3sI2PDDnX0g6sc6TSeN6eslF+Z6moTyS1wCZkoTyMdtbBnfBgN8/lboz:J383TzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\4190582dedc2d6834cab9b5d109b877f_JaffaCakes118.html
    1⤵
      PID:1980
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=4228,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=2812 /prefetch:1
      1⤵
        PID:3768
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=4224,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=4032 /prefetch:1
        1⤵
          PID:4824
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=4816,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5276 /prefetch:1
          1⤵
            PID:2908
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5400,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5412 /prefetch:8
            1⤵
              PID:1872
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --no-appcompat-clear --field-trial-handle=5416,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5584 /prefetch:8
              1⤵
                PID:184
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=4220,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5972 /prefetch:1
                1⤵
                  PID:396
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --field-trial-handle=5644,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5488 /prefetch:8
                  1⤵
                    PID:840
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5772,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5900 /prefetch:8
                    1⤵
                      PID:5036

                    Network

                    • flag-us
                      DNS
                      api.edgeoffer.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      api.edgeoffer.microsoft.com
                      IN A
                      Response
                      api.edgeoffer.microsoft.com
                      IN CNAME
                      bingadsedgeextension-prod.trafficmanager.net
                      bingadsedgeextension-prod.trafficmanager.net
                      IN CNAME
                      bingadsedgeextension-prod-europe.azurewebsites.net
                      bingadsedgeextension-prod-europe.azurewebsites.net
                      IN CNAME
                      ssl.bingadsedgeextension-prod-europe.azurewebsites.net
                      ssl.bingadsedgeextension-prod-europe.azurewebsites.net
                      IN A
                      94.245.104.56
                    • flag-us
                      DNS
                      api.edgeoffer.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      api.edgeoffer.microsoft.com
                      IN Unknown
                      Response
                      api.edgeoffer.microsoft.com
                      IN CNAME
                      bingadsedgeextension-prod.trafficmanager.net
                      bingadsedgeextension-prod.trafficmanager.net
                      IN CNAME
                      bingadsedgeextension-prod-europe.azurewebsites.net
                      bingadsedgeextension-prod-europe.azurewebsites.net
                      IN CNAME
                      ssl.bingadsedgeextension-prod-europe.azurewebsites.net
                    • flag-us
                      DNS
                      business.bing.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      business.bing.com
                      IN A
                      Response
                      business.bing.com
                      IN CNAME
                      business-bing-com.b-0005.b-msedge.net
                      business-bing-com.b-0005.b-msedge.net
                      IN CNAME
                      b-0005.b-msedge.net
                      b-0005.b-msedge.net
                      IN A
                      13.107.6.158
                    • flag-us
                      DNS
                      business.bing.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      business.bing.com
                      IN Unknown
                      Response
                      business.bing.com
                      IN CNAME
                      business-bing-com.b-0005.b-msedge.net
                      business-bing-com.b-0005.b-msedge.net
                      IN CNAME
                      b-0005.b-msedge.net
                    • flag-us
                      DNS
                      img.sedoparking.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      img.sedoparking.com
                      IN A
                      Response
                      img.sedoparking.com
                      IN CNAME
                      sedo.cachefly.net
                      sedo.cachefly.net
                      IN CNAME
                      vip1.g5.cachefly.net
                      vip1.g5.cachefly.net
                      IN A
                      205.234.175.175
                    • flag-us
                      DNS
                      img.sedoparking.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      img.sedoparking.com
                      IN Unknown
                      Response
                      img.sedoparking.com
                      IN CNAME
                      sedo.cachefly.net
                      sedo.cachefly.net
                      IN CNAME
                      vip1.g5.cachefly.net
                    • flag-us
                      GET
                      http://img.sedoparking.com/js/jquery-1.11.3.custom.min.js
                      Remote address:
                      205.234.175.175:80
                      Request
                      GET /js/jquery-1.11.3.custom.min.js HTTP/1.1
                      Host: img.sedoparking.com
                      Connection: keep-alive
                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0
                      DNT: 1
                      Accept: */*
                      Accept-Encoding: gzip, deflate
                      Accept-Language: en-US,en;q=0.9
                      Response
                      HTTP/1.1 200 OK
                      Date: Tue, 14 May 2024 12:53:23 GMT
                      Content-Type: application/x-javascript
                      Content-Length: 25176
                      Connection: keep-alive
                      Access-Control-Allow-Origin: *
                      Cache-Control: max-age=86400
                      Expires: Wed, 15 May 2024 12:53:23 GMT
                      X-CFHash: "7dd2fc9525d32ef5c44abe9036c98ad1"
                      X-CFF: B
                      Last-Modified: Thu, 28 Jun 2018 13:09:28 GMT
                      Vary: Accept-Encoding
                      X-CF3: H
                      CF4Age: 0
                      x-cf-tsc: 1685886798
                      CF4ttl: 31536000.000
                      Content-Encoding: gzip
                      X-CF2: H
                      Server: CFS 0215
                      X-CF-ReqID: d40dc64fa3bdece84d491f634306f623
                      X-CF1: 11696:fG.lon1:cf:nom:cacheN.lon1-01:H
                      Accept-Ranges: bytes
                    • flag-us
                      GET
                      http://img.sedoparking.com/templates/brick_gfx/common/logo_2016_blue.svg
                      Remote address:
                      205.234.175.175:80
                      Request
                      GET /templates/brick_gfx/common/logo_2016_blue.svg HTTP/1.1
                      Host: img.sedoparking.com
                      Connection: keep-alive
                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0
                      DNT: 1
                      Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                      Accept-Encoding: gzip, deflate
                      Accept-Language: en-US,en;q=0.9
                      Response
                      HTTP/1.1 200 OK
                      Date: Tue, 14 May 2024 12:53:24 GMT
                      Content-Type: image/svg+xml
                      Content-Length: 2077
                      Connection: keep-alive
                      Access-Control-Allow-Origin: *
                      Cache-Control: max-age=604800
                      Expires: Tue, 21 May 2024 12:53:24 GMT
                      X-CFHash: "cc975fdfd0cacdb8d27a0797b2d6ba71"
                      X-CFF: B
                      Last-Modified: Thu, 28 Jun 2018 13:09:28 GMT
                      Vary: Accept-Encoding
                      X-CF3: H
                      CF4Age: 0
                      x-cf-tsc: 1714078443
                      CF4ttl: 31536000.000
                      Content-Encoding: gzip
                      X-CF2: H
                      Accept-Ranges: bytes
                      Server: CFS 0215
                      X-CF-ReqID: c1eb3733b07b228b076fc322d81a1e68
                      X-CF1: 11696:fG.lon1:cf:nom:cacheN.lon1-01:M
                    • flag-us
                      DNS
                      www.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      www.microsoft.com
                      IN A
                      Response
                      www.microsoft.com
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net
                      www.microsoft.com-c-3.edgekey.net
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      IN CNAME
                      e13678.dscb.akamaiedge.net
                      e13678.dscb.akamaiedge.net
                      IN A
                      2.21.17.194
                    • flag-us
                      DNS
                      www.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      www.microsoft.com
                      IN A
                      Response
                      www.microsoft.com
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net
                      www.microsoft.com-c-3.edgekey.net
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      IN CNAME
                      e13678.dscb.akamaiedge.net
                      e13678.dscb.akamaiedge.net
                      IN A
                      2.21.17.194
                    • flag-us
                      DNS
                      www.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      www.microsoft.com
                      IN Unknown
                      Response
                      www.microsoft.com
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net
                      www.microsoft.com-c-3.edgekey.net
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      IN CNAME
                      e13678.dscb.akamaiedge.net
                    • flag-us
                      DNS
                      bzib.nelreports.net
                      Remote address:
                      8.8.8.8:53
                      Request
                      bzib.nelreports.net
                      IN A
                      Response
                      bzib.nelreports.net
                      IN CNAME
                      bzib.nelreports.net.akamaized.net
                      bzib.nelreports.net.akamaized.net
                      IN CNAME
                      a416.dscd.akamai.net
                      a416.dscd.akamai.net
                      IN A
                      96.16.53.149
                      a416.dscd.akamai.net
                      IN A
                      96.16.53.162
                    • flag-us
                      DNS
                      bzib.nelreports.net
                      Remote address:
                      8.8.8.8:53
                      Request
                      bzib.nelreports.net
                      IN Unknown
                      Response
                      bzib.nelreports.net
                      IN CNAME
                      bzib.nelreports.net.akamaized.net
                      bzib.nelreports.net.akamaized.net
                      IN CNAME
                      a416.dscd.akamai.net
                    • flag-us
                      DNS
                      ww1.srv.desk-top-app.info
                      Remote address:
                      8.8.8.8:53
                      Request
                      ww1.srv.desk-top-app.info
                      IN A
                      Response
                    • flag-us
                      DNS
                      ww1.srv.desk-top-app.info
                      Remote address:
                      8.8.8.8:53
                      Request
                      ww1.srv.desk-top-app.info
                      IN Unknown
                      Response
                    • flag-us
                      DNS
                      sedoparking.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      sedoparking.com
                      IN A
                      Response
                      sedoparking.com
                      IN A
                      64.190.63.136
                    • flag-us
                      DNS
                      sedoparking.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      sedoparking.com
                      IN Unknown
                      Response
                    • flag-de
                      GET
                      http://sedoparking.com/search/rl.php?rlt=1523392883687e4ef88bf0670dd4dd174729c1fd02&num=10&callback=jQuery1113021012680049654864_1715691202692&_=1715691202693
                      Remote address:
                      64.190.63.136:80
                      Request
                      GET /search/rl.php?rlt=1523392883687e4ef88bf0670dd4dd174729c1fd02&num=10&callback=jQuery1113021012680049654864_1715691202692&_=1715691202693 HTTP/1.1
                      Host: sedoparking.com
                      Connection: keep-alive
                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0
                      DNT: 1
                      Accept: */*
                      Accept-Encoding: gzip, deflate
                      Accept-Language: en-US,en;q=0.9
                      Response
                      HTTP/1.1 403 Forbidden
                      date: Tue, 14 May 2024 12:53:24 GMT
                      content-type: text/html; charset=UTF-8
                      transfer-encoding: chunked
                      vary: Accept-Encoding
                      x-powered-by: PHP/8.1.17
                      expires: Mon, 26 Jul 1997 05:00:00 GMT
                      cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
                      pragma: no-cache
                      last-modified: Tue, 14 May 2024 12:53:24 GMT
                      x-cache-miss-from: parking-7cbf88ff6b-tlz7g
                      server: NginX
                      content-encoding: gzip
                    • flag-us
                      DNS
                      ww1.srv.desk-top-app.info
                      Remote address:
                      8.8.8.8:53
                      Request
                      ww1.srv.desk-top-app.info
                      IN A
                      Response
                    • flag-us
                      DNS
                      nav-edge.smartscreen.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      nav-edge.smartscreen.microsoft.com
                      IN A
                      Response
                      nav-edge.smartscreen.microsoft.com
                      IN CNAME
                      tm-prod-wd-csp-edge.trafficmanager.net
                      tm-prod-wd-csp-edge.trafficmanager.net
                      IN CNAME
                      prod-agic-us-1.uksouth.cloudapp.azure.com
                      prod-agic-us-1.uksouth.cloudapp.azure.com
                      IN A
                      13.87.96.169
                    • flag-us
                      DNS
                      nav-edge.smartscreen.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      nav-edge.smartscreen.microsoft.com
                      IN Unknown
                      Response
                      nav-edge.smartscreen.microsoft.com
                      IN CNAME
                      tm-prod-wd-csp-edge.trafficmanager.net
                      tm-prod-wd-csp-edge.trafficmanager.net
                      IN CNAME
                      prod-agic-uw-3.ukwest.cloudapp.azure.com
                    • flag-us
                      DNS
                      8.8.8.8.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      8.8.8.8.in-addr.arpa
                      IN PTR
                      Response
                      8.8.8.8.in-addr.arpa
                      IN PTR
                      dnsgoogle
                    • flag-us
                      DNS
                      56.104.245.94.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      56.104.245.94.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      239.249.30.184.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      239.249.30.184.in-addr.arpa
                      IN PTR
                      Response
                      239.249.30.184.in-addr.arpa
                      IN PTR
                      a184-30-249-239deploystaticakamaitechnologiescom
                    • flag-us
                      DNS
                      175.175.234.205.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      175.175.234.205.in-addr.arpa
                      IN PTR
                      Response
                      175.175.234.205.in-addr.arpa
                      IN PTR
                      vip1 G-anycast1cacheflynet
                    • flag-us
                      DNS
                      22.177.190.20.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      22.177.190.20.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      136.63.190.64.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      136.63.190.64.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      194.17.21.2.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      194.17.21.2.in-addr.arpa
                      IN PTR
                      Response
                      194.17.21.2.in-addr.arpa
                      IN PTR
                      a2-21-17-194deploystaticakamaitechnologiescom
                    • flag-us
                      DNS
                      169.96.87.13.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      169.96.87.13.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      149.53.16.96.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      149.53.16.96.in-addr.arpa
                      IN PTR
                      Response
                      149.53.16.96.in-addr.arpa
                      IN PTR
                      a96-16-53-149deploystaticakamaitechnologiescom
                    • flag-us
                      DNS
                      www.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      www.microsoft.com
                      IN A
                      Response
                      www.microsoft.com
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net
                      www.microsoft.com-c-3.edgekey.net
                      IN CNAME
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                      IN CNAME
                      e13678.dscb.akamaiedge.net
                      e13678.dscb.akamaiedge.net
                      IN A
                      2.21.17.194
                    • flag-us
                      DNS
                      241.197.17.2.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      241.197.17.2.in-addr.arpa
                      IN PTR
                      Response
                      241.197.17.2.in-addr.arpa
                      IN PTR
                      a2-17-197-241deploystaticakamaitechnologiescom
                    • flag-us
                      DNS
                      43.58.199.20.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      43.58.199.20.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      edgestatic.azureedge.net
                      Remote address:
                      8.8.8.8:53
                      Request
                      edgestatic.azureedge.net
                      IN A
                      Response
                      edgestatic.azureedge.net
                      IN CNAME
                      edgestatic.afd.azureedge.net
                      edgestatic.afd.azureedge.net
                      IN CNAME
                      azureedge-t-prod.trafficmanager.net
                      azureedge-t-prod.trafficmanager.net
                      IN CNAME
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      IN CNAME
                      part-0036.t-0009.t-msedge.net
                      part-0036.t-0009.t-msedge.net
                      IN A
                      13.107.246.64
                      part-0036.t-0009.t-msedge.net
                      IN A
                      13.107.213.64
                    • flag-us
                      DNS
                      edgestatic.azureedge.net
                      Remote address:
                      8.8.8.8:53
                      Request
                      edgestatic.azureedge.net
                      IN Unknown
                      Response
                      edgestatic.azureedge.net
                      IN CNAME
                      edgestatic.afd.azureedge.net
                      edgestatic.afd.azureedge.net
                      IN CNAME
                      azureedge-t-prod.trafficmanager.net
                      azureedge-t-prod.trafficmanager.net
                      IN CNAME
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      IN CNAME
                      part-0036.t-0009.t-msedge.net
                    • flag-us
                      DNS
                      c.s-microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      c.s-microsoft.com
                      IN A
                      Response
                      c.s-microsoft.com
                      IN CNAME
                      c-s.cms.ms.akadns.net
                      c-s.cms.ms.akadns.net
                      IN CNAME
                      c.s-microsoft.com-c.edgekey.net
                      c.s-microsoft.com-c.edgekey.net
                      IN CNAME
                      e13678.dscg.akamaiedge.net
                      e13678.dscg.akamaiedge.net
                      IN A
                      184.30.250.70
                    • flag-us
                      DNS
                      c.s-microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      c.s-microsoft.com
                      IN Unknown
                      Response
                      c.s-microsoft.com
                      IN CNAME
                      c-s.cms.ms.akadns.net
                      c-s.cms.ms.akadns.net
                      IN CNAME
                      c.s-microsoft.com-c.edgekey.net
                      c.s-microsoft.com-c.edgekey.net
                      IN CNAME
                      e13678.dscg.akamaiedge.net
                    • flag-nl
                      GET
                      https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90
                      Remote address:
                      23.62.61.90:443
                      Request
                      GET /th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/2.0
                      host: www.bing.com
                      accept: */*
                      accept-encoding: gzip, deflate, br
                      user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
                      Response
                      HTTP/2.0 200
                      cache-control: public, max-age=2592000
                      content-type: image/png
                      access-control-allow-origin: *
                      access-control-allow-headers: *
                      access-control-allow-methods: GET, POST, OPTIONS
                      timing-allow-origin: *
                      report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
                      nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
                      content-length: 1107
                      date: Tue, 14 May 2024 12:53:25 GMT
                      alt-svc: h3=":443"; ma=93600
                      x-cdn-traceid: 0.563d3e17.1715691205.5d54e72
                    • flag-us
                      DNS
                      wcpstatic.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      wcpstatic.microsoft.com
                      IN A
                      Response
                      wcpstatic.microsoft.com
                      IN CNAME
                      consentdeliveryfd.azurefd.net
                      consentdeliveryfd.azurefd.net
                      IN CNAME
                      firstparty-azurefd-prod.trafficmanager.net
                      firstparty-azurefd-prod.trafficmanager.net
                      IN CNAME
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      IN CNAME
                      part-0036.t-0009.t-msedge.net
                      part-0036.t-0009.t-msedge.net
                      IN A
                      13.107.246.64
                      part-0036.t-0009.t-msedge.net
                      IN A
                      13.107.213.64
                    • flag-us
                      DNS
                      wcpstatic.microsoft.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      wcpstatic.microsoft.com
                      IN Unknown
                      Response
                      wcpstatic.microsoft.com
                      IN CNAME
                      consentdeliveryfd.azurefd.net
                      consentdeliveryfd.azurefd.net
                      IN CNAME
                      firstparty-azurefd-prod.trafficmanager.net
                      firstparty-azurefd-prod.trafficmanager.net
                      IN CNAME
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      shed.dual-low.part-0036.t-0009.t-msedge.net
                      IN CNAME
                      part-0036.t-0009.t-msedge.net
                    • flag-us
                      DNS
                      90.61.62.23.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      90.61.62.23.in-addr.arpa
                      IN PTR
                      Response
                      90.61.62.23.in-addr.arpa
                      IN PTR
                      a23-62-61-90deploystaticakamaitechnologiescom
                    • flag-us
                      DNS
                      183.59.114.20.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      183.59.114.20.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      15.164.165.52.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      15.164.165.52.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      15.164.165.52.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      15.164.165.52.in-addr.arpa
                      IN PTR
                    • flag-us
                      DNS
                      172.210.232.199.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      172.210.232.199.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      11.227.111.52.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      11.227.111.52.in-addr.arpa
                      IN PTR
                      Response
                    • flag-us
                      DNS
                      240.197.17.2.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      240.197.17.2.in-addr.arpa
                      IN PTR
                      Response
                      240.197.17.2.in-addr.arpa
                      IN PTR
                      a2-17-197-240deploystaticakamaitechnologiescom
                    • flag-us
                      DNS
                      155.61.62.23.in-addr.arpa
                      Remote address:
                      8.8.8.8:53
                      Request
                      155.61.62.23.in-addr.arpa
                      IN PTR
                      Response
                      155.61.62.23.in-addr.arpa
                      IN PTR
                      a23-62-61-155deploystaticakamaitechnologiescom
                    • 94.245.104.56:443
                      api.edgeoffer.microsoft.com
                      tls
                      3.6kB
                       7.5kB
                       15
                      15
                    • 13.107.6.158:443
                      business.bing.com
                      tls
                      3.3kB
                       9.8kB
                       19
                      24
                    • 205.234.175.175:80
                      http://img.sedoparking.com/templates/brick_gfx/common/logo_2016_blue.svg
                      http
                      1.5kB
                       29.6kB
                       18
                      28

                      HTTP Request

                      GET http://img.sedoparking.com/js/jquery-1.11.3.custom.min.js

                      HTTP Response

                      200

                      HTTP Request

                      GET http://img.sedoparking.com/templates/brick_gfx/common/logo_2016_blue.svg

                      HTTP Response

                      200
                    • 2.21.17.194:443
                      www.microsoft.com
                      tls
                      4.1kB
                       24.5kB
                       28
                      37
                    • 96.16.53.149:443
                      bzib.nelreports.net
                      tls
                      2.3kB
                       5.0kB
                       11
                      13
                    • 64.190.63.136:80
                      http://sedoparking.com/search/rl.php?rlt=1523392883687e4ef88bf0670dd4dd174729c1fd02&num=10&callback=jQuery1113021012680049654864_1715691202692&_=1715691202693
                      http
                      701 B
                       708 B
                       6
                      4

                      HTTP Request

                      GET http://sedoparking.com/search/rl.php?rlt=1523392883687e4ef88bf0670dd4dd174729c1fd02&num=10&callback=jQuery1113021012680049654864_1715691202692&_=1715691202693

                      HTTP Response

                      403
                    • 13.87.96.169:443
                      nav-edge.smartscreen.microsoft.com
                      tls
                      2.5kB
                       7.6kB
                       13
                      13
                    • 13.87.96.169:443
                      nav-edge.smartscreen.microsoft.com
                      tls
                      11.9kB
                       12.9kB
                       31
                      34
                    • 96.16.53.149:443
                      bzib.nelreports.net
                      tls
                      3.8kB
                       6.1kB
                       14
                      16
                    • 13.107.246.64:443
                      edgestatic.azureedge.net
                      tls
                      2.1kB
                       311 B
                       7
                      5
                    • 13.107.246.64:443
                      edgestatic.azureedge.net
                      tls
                      2.1kB
                       311 B
                       7
                      5
                    • 13.107.246.64:443
                      edgestatic.azureedge.net
                      tls
                      116.0kB
                       6.0MB
                       2418
                      4312
                    • 23.62.61.90:443
                      https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90
                      tls, http2
                      1.4kB
                       6.3kB
                       16
                      11

                      HTTP Request

                      GET https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90

                      HTTP Response

                      200
                    • 13.107.246.64:443
                      edgestatic.azureedge.net
                      tls
                      9.3kB
                       274.8kB
                       126
                      216
                    • 13.107.246.64:443
                      wcpstatic.microsoft.com
                      tls
                      5.3kB
                       91.1kB
                       53
                      79
                    • 23.62.61.90:443
                      www.bing.com
                      tls
                      2.3kB
                       5.2kB
                       10
                      12
                    • 23.62.61.155:443
                      www.bing.com
                      tls
                      2.5kB
                       986 B
                       9
                      9
                    • 8.8.8.8:53
                      api.edgeoffer.microsoft.com
                      dns
                      73 B
                       226 B
                       1
                      1

                      DNS Request

                      api.edgeoffer.microsoft.com

                      DNS Response

                      94.245.104.56

                    • 8.8.8.8:53
                      api.edgeoffer.microsoft.com
                      dns
                      73 B
                       271 B
                       1
                      1

                      DNS Request

                      api.edgeoffer.microsoft.com

                    • 8.8.8.8:53
                      business.bing.com
                      dns
                      63 B
                       144 B
                       1
                      1

                      DNS Request

                      business.bing.com

                      DNS Response

                      13.107.6.158

                    • 8.8.8.8:53
                      business.bing.com
                      dns
                      63 B
                       185 B
                       1
                      1

                      DNS Request

                      business.bing.com

                    • 8.8.8.8:53
                      img.sedoparking.com
                      dns
                      65 B
                       134 B
                       1
                      1

                      DNS Request

                      img.sedoparking.com

                      DNS Response

                      205.234.175.175

                    • 8.8.8.8:53
                      img.sedoparking.com
                      dns
                      65 B
                       174 B
                       1
                      1

                      DNS Request

                      img.sedoparking.com

                    • 8.8.8.8:53
                      www.microsoft.com
                      dns
                      63 B
                       230 B
                       1
                      1

                      DNS Request

                      www.microsoft.com

                      DNS Response

                      2.21.17.194

                    • 8.8.8.8:53
                      www.microsoft.com
                      dns
                      63 B
                       230 B
                       1
                      1

                      DNS Request

                      www.microsoft.com

                      DNS Response

                      2.21.17.194

                    • 8.8.8.8:53
                      www.microsoft.com
                      dns
                      63 B
                       275 B
                       1
                      1

                      DNS Request

                      www.microsoft.com

                    • 8.8.8.8:53
                      bzib.nelreports.net
                      dns
                      65 B
                       172 B
                       1
                      1

                      DNS Request

                      bzib.nelreports.net

                      DNS Response

                      96.16.53.149
                      96.16.53.162

                    • 8.8.8.8:53
                      bzib.nelreports.net
                      dns
                      65 B
                       204 B
                       1
                      1

                      DNS Request

                      bzib.nelreports.net

                    • 8.8.8.8:53
                      ww1.srv.desk-top-app.info
                      dns
                      71 B
                       150 B
                       1
                      1

                      DNS Request

                      ww1.srv.desk-top-app.info

                    • 8.8.8.8:53
                      ww1.srv.desk-top-app.info
                      dns
                      71 B
                       150 B
                       1
                      1

                      DNS Request

                      ww1.srv.desk-top-app.info

                    • 8.8.8.8:53
                      sedoparking.com
                      dns
                      61 B
                       77 B
                       1
                      1

                      DNS Request

                      sedoparking.com

                      DNS Response

                      64.190.63.136

                    • 8.8.8.8:53
                      sedoparking.com
                      dns
                      61 B
                       143 B
                       1
                      1

                      DNS Request

                      sedoparking.com

                    • 8.8.8.8:53
                      ww1.srv.desk-top-app.info
                      dns
                      71 B
                       150 B
                       1
                      1

                      DNS Request

                      ww1.srv.desk-top-app.info

                    • 8.8.8.8:53
                      nav-edge.smartscreen.microsoft.com
                      dns
                      80 B
                       200 B
                       1
                      1

                      DNS Request

                      nav-edge.smartscreen.microsoft.com

                      DNS Response

                      13.87.96.169

                    • 8.8.8.8:53
                      nav-edge.smartscreen.microsoft.com
                      dns
                      80 B
                       243 B
                       1
                      1

                      DNS Request

                      nav-edge.smartscreen.microsoft.com

                    • 8.8.8.8:53
                      8.8.8.8.in-addr.arpa
                      dns
                      66 B
                       90 B
                       1
                      1

                      DNS Request

                      8.8.8.8.in-addr.arpa

                    • 8.8.8.8:53
                      56.104.245.94.in-addr.arpa
                      dns
                      72 B
                       146 B
                       1
                      1

                      DNS Request

                      56.104.245.94.in-addr.arpa

                    • 8.8.8.8:53
                      239.249.30.184.in-addr.arpa
                      dns
                      73 B
                       139 B
                       1
                      1

                      DNS Request

                      239.249.30.184.in-addr.arpa

                    • 8.8.8.8:53
                      175.175.234.205.in-addr.arpa
                      dns
                      74 B
                       116 B
                       1
                      1

                      DNS Request

                      175.175.234.205.in-addr.arpa

                    • 8.8.8.8:53
                      22.177.190.20.in-addr.arpa
                      dns
                      72 B
                       158 B
                       1
                      1

                      DNS Request

                      22.177.190.20.in-addr.arpa

                    • 8.8.8.8:53
                      136.63.190.64.in-addr.arpa
                      dns
                      72 B
                       156 B
                       1
                      1

                      DNS Request

                      136.63.190.64.in-addr.arpa

                    • 8.8.8.8:53
                      194.17.21.2.in-addr.arpa
                      dns
                      70 B
                       133 B
                       1
                      1

                      DNS Request

                      194.17.21.2.in-addr.arpa

                    • 8.8.8.8:53
                      169.96.87.13.in-addr.arpa
                      dns
                      71 B
                       145 B
                       1
                      1

                      DNS Request

                      169.96.87.13.in-addr.arpa

                    • 8.8.8.8:53
                      149.53.16.96.in-addr.arpa
                      dns
                      71 B
                       135 B
                       1
                      1

                      DNS Request

                      149.53.16.96.in-addr.arpa

                    • 8.8.8.8:53
                      www.microsoft.com
                      dns
                      63 B
                       230 B
                       1
                      1

                      DNS Request

                      www.microsoft.com

                      DNS Response

                      2.21.17.194

                    • 8.8.8.8:53
                      241.197.17.2.in-addr.arpa
                      dns
                      71 B
                       135 B
                       1
                      1

                      DNS Request

                      241.197.17.2.in-addr.arpa

                    • 8.8.8.8:53
                      43.58.199.20.in-addr.arpa
                      dns
                      71 B
                       157 B
                       1
                      1

                      DNS Request

                      43.58.199.20.in-addr.arpa

                    • 8.8.8.8:53
                      edgestatic.azureedge.net
                      dns
                      70 B
                       245 B
                       1
                      1

                      DNS Request

                      edgestatic.azureedge.net

                      DNS Response

                      13.107.246.64
                      13.107.213.64

                    • 8.8.8.8:53
                      edgestatic.azureedge.net
                      dns
                      70 B
                       273 B
                       1
                      1

                      DNS Request

                      edgestatic.azureedge.net

                    • 8.8.8.8:53
                      c.s-microsoft.com
                      dns
                      63 B
                       193 B
                       1
                      1

                      DNS Request

                      c.s-microsoft.com

                      DNS Response

                      184.30.250.70

                    • 8.8.8.8:53
                      c.s-microsoft.com
                      dns
                      63 B
                       238 B
                       1
                      1

                      DNS Request

                      c.s-microsoft.com

                    • 224.0.0.251:5353
                      204 B
                       3
                    • 8.8.8.8:53
                      wcpstatic.microsoft.com
                      dns
                      69 B
                       265 B
                       1
                      1

                      DNS Request

                      wcpstatic.microsoft.com

                      DNS Response

                      13.107.246.64
                      13.107.213.64

                    • 8.8.8.8:53
                      wcpstatic.microsoft.com
                      dns
                      69 B
                       280 B
                       1
                      1

                      DNS Request

                      wcpstatic.microsoft.com

                    • 8.8.8.8:53
                      90.61.62.23.in-addr.arpa
                      dns
                      70 B
                       133 B
                       1
                      1

                      DNS Request

                      90.61.62.23.in-addr.arpa

                    • 8.8.8.8:53
                      183.59.114.20.in-addr.arpa
                      dns
                      72 B
                       158 B
                       1
                      1

                      DNS Request

                      183.59.114.20.in-addr.arpa

                    • 8.8.8.8:53
                      15.164.165.52.in-addr.arpa
                      dns
                      144 B
                       146 B
                       2
                      1

                      DNS Request

                      15.164.165.52.in-addr.arpa

                      DNS Request

                      15.164.165.52.in-addr.arpa

                    • 8.8.8.8:53
                      172.210.232.199.in-addr.arpa
                      dns
                      74 B
                       128 B
                       1
                      1

                      DNS Request

                      172.210.232.199.in-addr.arpa

                    • 8.8.8.8:53
                      11.227.111.52.in-addr.arpa
                      dns
                      72 B
                       158 B
                       1
                      1

                      DNS Request

                      11.227.111.52.in-addr.arpa

                    • 8.8.8.8:53
                      240.197.17.2.in-addr.arpa
                      dns
                      71 B
                       135 B
                       1
                      1

                      DNS Request

                      240.197.17.2.in-addr.arpa

                    • 8.8.8.8:53
                      155.61.62.23.in-addr.arpa
                      dns
                      71 B
                       135 B
                       1
                      1

                      DNS Request

                      155.61.62.23.in-addr.arpa

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads

                    We care about your privacy.

                    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.