Malware Analysis Report

2025-08-10 21:27

Sample ID 240525-ay379sgd6t
Target 704ef897f12ce915b61a5c8ffb00f039_JaffaCakes118
SHA256 d08c0c7b101aed9cd8dd0a7da1c40f7a029a83368c81248be166dd731472b010
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

d08c0c7b101aed9cd8dd0a7da1c40f7a029a83368c81248be166dd731472b010

Threat Level: No (potentially) malicious behavior was detected

The file 704ef897f12ce915b61a5c8ffb00f039_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-25 00:38

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-25 00:38

Reported

2024-05-25 00:40

Platform

win7-20240419-en

Max time kernel

133s

Max time network

127s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\704ef897f12ce915b61a5c8ffb00f039_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10878" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "19623" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "19313" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10000" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10872" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "282" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "9521" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10872" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "282" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "400" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9521" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000d7c7e73b934388418857a0db8be9c1d1000000000200000000001066000000010000200000003a49510b7375a5dd294cecd617ad30a8a0b32cb595dc3c3bc9147477dd0d6edc000000000e8000000002000020000000542fe6a274800587c4b71e8f39408af78c6dd0e0a3157767f61b217e3682aef8900000009cf11582d9dc586a9d0b29b986aa9646e0a1212c4d2fad44d3312ea9728cc58c5797baa91fcc14b3e0a8f9ff81474e6ce7b9e5d08b181190b79d531ac46f5a5c7fc99514db209546befcc18cecb5380c34bb7b758764ee8ec20decd34eaa14fcd48c55ec7037ccbbe795ceb79efe6d40b03673bb21a136a8d1a34ae76386f7236d7ebe2280483f0a0513a784145c91c040000000a53685086424933d8086f8ce49cac759630478ac8602c06d8a09b20bc90efd56f8b91e7f8fe03cbfa48871fad4f0f93bd9bbfa46322621696ae50d1598384d42 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10878" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "9810" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10000" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10000" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "288" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "19623" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 708311073caeda01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\NumberOfSubdomains = "1" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{0F406431-1A2F-11EF-88AC-F2AB90EC9A26} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "9722" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "282" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "288" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9804" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10593" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "9722" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "400" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10872" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10757" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "9521" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10878" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10757" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\704ef897f12ce915b61a5c8ffb00f039_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2248 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 216.58.204.74:80 fonts.googleapis.com tcp
GB 216.58.204.74:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 216.58.212.238:80 www.youtube.com tcp
GB 216.58.212.238:80 www.youtube.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.201.106:443 jnn-pa.googleapis.com tcp
GB 216.58.212.238:80 www.youtube.com tcp
GB 216.58.212.238:80 www.youtube.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 216.58.201.106:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 216.58.201.106:443 jnn-pa.googleapis.com tcp
GB 216.58.201.106:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
US 8.8.8.8:53 fe0.google.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp

Files

C:\Users\Admin\AppData\Local\Temp\CabD625.tmp

MD5 29f65ba8e88c063813cc50a4ea544e93
SHA1 05a7040d5c127e68c25d81cc51271ffb8bef3568
SHA256 1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184
SHA512 e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

C:\Users\Admin\AppData\Local\Temp\TarD6B5.tmp

MD5 435a9ac180383f9fa094131b173a2f7b
SHA1 76944ea657a9db94f9a4bef38f88c46ed4166983
SHA256 67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34
SHA512 1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 9ad43c4b5fb69039363eb5d54b0caf8e
SHA1 095b4cbc9602230f66072cd29d7b8e769edd845c
SHA256 65e734cdc380df092bf2b8a919f77a8f0622f61b49c9238714288c05ede924b4
SHA512 b579fc9a6a9d0dc5241b9b34640f3505a53c320ef5ab3289558c8e159045a543db1c0d08611cc75c18d0377ce9280e31193bcf799562b956e3796a320dffbb04

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 ef23f3787bdadc4195ea9d135765ef6d
SHA1 d46897c8df97abc083bd94cd6a464a0504859564
SHA256 637c8deeced1f3a33ee08bde83192f36a0f1d5927738f559d3441684ff0a18eb
SHA512 13bf14c625305effd8374d5cae1f53aa61f2d5811987ffcb2e2d038a651370a780c6e98cf729657fd2fb4c30d860ababe9b83229836233bafadc77c905f68132

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH7CXNA3\www-player[1].css

MD5 734b31725e29c82861a2c08184fc7055
SHA1 5ae2d674dd076c2025ead424f423b53bc5f46e6c
SHA256 2958e30eda7143b853db1d5e3a9e606f83d3bf40a162148fbca5a1b61d184223
SHA512 952fc63062d9e622bf71a8d2d83a63550cef69750e4d25a2659740883486c788aabbc4cb5a73a599f4f8031a8c514ff5f1109701803b35d777414f92d9210f95

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH7CXNA3\www-embed-player[2].js

MD5 01ffe52cedfac91db631afb50ec0406d
SHA1 6c46d6f85c315d1b5a0f7207ffc9c11f51e91509
SHA256 5e7aa90ed8daf375a49334177305eaa26fd800a2a580efe1da3388ad51b094d7
SHA512 0f3b013d65a6bf7acbc350c0a664fbc4549d388599a9442a6a7e0efc5bbd33da5dadd8f4d0c63b0ca10c0ef891265a2921e370563ce92acc1d0b977423b67af4

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH7CXNA3\base[2].js

MD5 1a07b3637d035852c1bf496244e02e5d
SHA1 5499d5010793c37998d7109f7ada060bb53f9516
SHA256 489c5db1fe048e9e5d4deb643c382c2baee253283ec1c55f5e62b12c746e0e64
SHA512 954c45573703c72322a3821d7d910bad40b20a18f5530bdc5d7389a7c5d5ff33f7a0a6815d9c59300b5441ed6b127fc238897e3a586b73c4d583257e2ac265e4

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRMHFE1W\ad_status[1].js

MD5 1fa71744db23d0f8df9cce6719defcb7
SHA1 e4be9b7136697942a036f97cf26ebaf703ad2067
SHA256 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
SHA512 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 a0a16381c51ae33471a18a65936a74fa
SHA1 b053c82e623e28be6c4d710062cd2d0ede772098
SHA256 97d57ceed095d04051b5946f9554944687577344531740c825f0ffbf20904839
SHA512 393a2f3598dc75da17fe51afcdae3c2d36d017d04968a028eeb894c312e9435b7a703c3a5a0fdccac542be641fb04c9047e6cba3eec637276c7eefffa46dfd89

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH7CXNA3\embed[1].js

MD5 0691a0284541e31b0d8584e2e7f4a29c
SHA1 895b5df3472fd5da3110852f954d8146232032a2
SHA256 7053def58737c584b633c9efae1848ca99fa6130c1843b16fb72de9a656c8c04
SHA512 1173cb0e0da40bc1c0929618e565f277c7f3d97d11d33398cf309ec4f9b6be94dd474b816ce136e380bf55e10bee6edf9fd2711edbcbe36a9be8169c1193025d

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRMHFE1W\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff

MD5 de8b7431b74642e830af4d4f4b513ec9
SHA1 f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
SHA256 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
SHA512 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH7CXNA3\KFOmCnqEu92Fr1Mu4mxM[1].woff

MD5 bafb105baeb22d965c70fe52ba6b49d9
SHA1 934014cc9bbe5883542be756b3146c05844b254f
SHA256 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
SHA512 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 eae80d6fab5f4f735fecca8dcf5f30cc
SHA1 9d8f7f2a35162314f17380d145f62fcc54d255d4
SHA256 1d38b7dfbf9ba2edb579356d193e6f5a9cc1f19ef5284b93be376754d7535cf2
SHA512 27e618d86060b95082a2b2f13c9cc6eb8e0b26f722fae2a62331edd4b540d8f81742ae90f44b4fe393a35cb4431b75038707bb5151de9c4503fac14188ec8014

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 e0a745d6ebd004cf233420d9388f3879
SHA1 c728f5871db11901cf1714c00825d62a336a073d
SHA256 6f4ca96c340249ce9dec21926239837ba99b660f802f9bac044f842916c46cb1
SHA512 7c11ef30f22a12d055dc85efea98b279d538eafa462b9b5367213763a5dad22e6c66186e4f3ddb17c0c53f19acea8e6955bcf086748626790dedacfd27152721

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 5f184ff60c6fbac45f70e9b7d012bb7f
SHA1 7e950cd4a856d84427016bfac38912a7eead2bc4
SHA256 c5c11628f855e2c83f60016bf394a7acb2bcad978a0a917faff721bd36d004f0
SHA512 6aa10c047dc42680210fd9212dca304bf7bbace759e560b7ff01991e6ee6b7963cc8ec1d05518481f863b8db8382e54dacb1d3f2ecc774801818d04487d0e5e3

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 1305917dca4995c7eb35047aa9ca1d27
SHA1 b908ff38e63e502bebc7c08c17454da041e52dec
SHA256 dc0210d85b803417499d71a36e12edfc56f043de36869963dca500bfec5f57da
SHA512 e67b22e52e239099e5cff92b2d7380f9872725bece3458d4fb994e5ea6d6e9b96c90568ea6f5d04a7a92948565dee2c4344190724d467354ad2133094b809892

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 02e01da5f7cb5c99806648cddf74b14c
SHA1 3ab2b187f49374f3edb2c5bbcd8c70b84bb17b09
SHA256 98383fd525644fddebad5f6e0e141e9d75113e94b0090d0b4fcfe7bd05d7f413
SHA512 c0b2a981b54171b2f0f72a3a5319dc845575b6bba051c23d13172c5e95ad6d162a66fe4951a8ec20563bd5831ad7e4b45b71727d055403eef4ceb6f469bd3e16

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 b55689544f9990622b895a7890cc5714
SHA1 2c0fd1cbfb4385bdecdb3a2bddec117763863328
SHA256 7fbb46baa1ae95767fd4432ec55e7311721e24a08d3eebb139be8f3710298082
SHA512 d79a3a60723ee7e6efb7ec55bc653da2b419f7c602800d77022fa428a1a7b784194f72fe4fa4c16aa51b950dbc5b28e01966d609aded228d8088a3dfcced9046

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 27c7a371f5dfe3215b70a97431c7f6e9
SHA1 0c4aab79a1d4fdeb23b9a818d7a64c579d27991c
SHA256 2c9c3754b0bdd1d29f8cd10da11b484f7a17622bfb429fc006c44e7d6c739136
SHA512 d4d60301f9f919dda4442fcbcf754dc2bd46487373273cf06490e37dab33046d96328eb1d799541401446ffb5be1dfa4cc8e37fc9410fda6bfbfc24895807156

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 7f96e007ba71912a875d658e8fcbcd38
SHA1 4147f69393d30a7f24de18ce03f1367ad03ed8e5
SHA256 66b669e9fbdf243bf5d749a7c014162a90cb5bcb92436d524436c5bbdc590f19
SHA512 e490bf73d728357362ab1f3652184dd55a341e83f97a903eb42cec7c66941d283c5b0daa10934cb7891c5002884ed05a775f8c56411893b943abe5a986296f33

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 4f92c736a5cfa2bca814ef45d672bb31
SHA1 ad7bae5071744fedd0169f3ea7b589cb2017e95c
SHA256 9f8a09e9acabf1aaac165f252b152779f4555aabe0955aae4be0c9e1688ed711
SHA512 34457b1abc7065aadf0bfb6dfc0afac61fa0b5980549295b971437802114b80c964a8e39e6b12166edad7be0c596f3a7c0842193196a88f32757f38fe73d7f74

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 5a1b2b227b1ed84d6209f3590755c8ce
SHA1 c9aa6f795ee9a3a46717cc9df89b5353822397e9
SHA256 8db8cd21d2b85ce9a5ce01be5e2337ffbcbf77a650aa8b51863d66fd4b6514db
SHA512 a7249933fd3a840c63bcef3c09066b7a26824027677d9813cc2ff2d21ba2fba537f47f003e7b84e322316eafc67c9f534b9727debc47eeb23fa3ad46505e6ad8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 953463d11c540d5629ed0150208177ca
SHA1 c22675a6e34adc92abf30dc8a062af77320ae0f2
SHA256 d5d731351894b2507938f652129205b8ddf0b6f0d8e83a4a8dc0b646c70d44f0
SHA512 7396c1d2be6fa6e0b82c205259afeb3846eeedabb2674037f1187105d1a096fc5cf60176dbe0c746eb20bbd2c6f497f97f6e412fca2697c5a39f72d65f6b0931

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 569b682e70fa49030c8952479b317140
SHA1 d80b373272e05ccd660745a761de95ea49d27f4d
SHA256 0a5646e424fdd29be18816e0c6cf0d59481f4379f4997538f465b73362ca14ea
SHA512 e6508dec6fd8bc181495512e300dfe9dd5491844a2fca40982f15df97d1f69374a6bf8c673f236e8d23a2f28e8da91d86767cd73e5a980ed8bc77a6880dcf201

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 63cde951e69f5c0eb293b490b1026ba5
SHA1 02a01eee3061cafc7ec5a8ba34a00fd9486b6c07
SHA256 78fa107896d536a829cf3d209d20943ea4b888b8054ea6cf5e679c2548a1faf6
SHA512 7556da0812a599e4a22c51d0d16033ffad79dc6e1c72d8c243cb5d8c0651a87e0039ecc7d1dbec84d53e7a899b57c69f1ba13877e052328b5f7d243a5c41949f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 56072d157d8f6ffdf39a3d0f0f9a9cc0
SHA1 d0810513903d771ecee5d7c561f8795ffc289148
SHA256 5850c28a0430a1580982db78b8853bf58c738ff4c91046ea009726ed22507477
SHA512 e389f9b6cb218f91e4c98bfc5f8fa4ee6ce9d6faca34c06be9527811a5b452eadf89235bd815e3f685135fa28a676c41a923a6d3cfd42a5f0f43495db432642a

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 cf5f6f7b25d7c7ff9d7784c6cf914d09
SHA1 2627f21119dcbee88ffe9065f95891626a03e832
SHA256 fa2b3deb22fe0a77b6218a61db12f78eaf552a5a8fa73e1a8dde0d6fa8a88ea9
SHA512 9e00b43a66b55e54a9d832a08b415292dbeff8b8bc2fdc0e794551d5e1300491b0e09daf262bf442533f6d41be24a01fac63e92f844a004ec7b74f652d3dc899

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 818f86bf877ee245ce37f75cc1fb6012
SHA1 3534968587b6aba2900d3143d3b8a543a6dd1631
SHA256 6476216b9b33605501a2a2a5bd6539345b04b6f2c9f5cebfb502b77a09ab6e8a
SHA512 9f06891190aef6a64b66adccc1f4838cff99f76de2bc84007c137f323a6acdc407157118205a2f92863265ea2ca1f8f671b78f510ffeed7105b43c6ac816685f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 c3c6502f1b7488b0fbb5af6124a79958
SHA1 579c820c9b518df55d23f86cf1c89e38538ede7b
SHA256 d058db0501372f833a19fb145fda56c0409f8cf117086986019e8935000e23e2
SHA512 569fa66d58b3e196ee6dacf8a3451d0610353d0cab0807215ed902707c5719c54dbf4f82b0ef7384670469901b5f929cee6b84dca441ccc95b2e5578991892f3

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 93e9805893bd0c481a3a985fb28b5af3
SHA1 f1176facf3a617cdcff7c8d3b625d713f26248f0
SHA256 56f71dd2703473f17111514b3cb20db61f9de45855f5df6a6daae96a9740d6e3
SHA512 4e8f59bef4a8628fc1dac0360a6f2eaefb908ed14d8b3ced6fa68219445980520fc1f092de5b73e3f5c017fc99de851a04dbf04781b995d5ce3513e67d20c91b

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 e562f6ac25f22aa272aa65f22a04aa91
SHA1 8e4358a673adc635e06d3aa7ddb3d9d45f991e15
SHA256 f1027da5141b0e14b03b208742df04f46bd3d9395c939c1f0ec8a4b4c139ca93
SHA512 32baf32de468e8a8de98f475c9b8af4404c1458fa3e6b99f1f7cd044ed3d6b6520f0004a886b4c58a29ab0db15e95dedf1d3031df6e9cda0378d8df038773271

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 4f802da039b32df61c825c001cf379e1
SHA1 1738256efe6bcaa8847e8207a538d6a77bab0ad5
SHA256 fbf6f53d822fc02871801f921275035af1cb98eb5c345dcdbd9ff62e6ca6c1c9
SHA512 9c190ff70cfdd0489a73985115e71ce5adbadbf3e7a0f0fd68746997d95752dfd29435bd6ce0c662beb138ee8cac44881effa8bb7fed5aec6f77bd6abcf53874

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 c03648dc85002c3531a457f1958baf3d
SHA1 373995525ec33bf5ce4d97107389b42ae70b723b
SHA256 f0299a70acda074b5dbb2066d99774bc127f1869558afd3a9300ace7d7227e18
SHA512 118e91827f264e1d6d5c10fa6884b59b7dbb9e8bab3fd8e8428af02938ebe3465671f2073e7efa415797a1cbc9f9c6ee2a276d5e620f54b431d5cffecccd4861

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 eba08b31201c50eff8820ac36735421c
SHA1 86cd7d8fd3bdea71639d1f2ebf63a30cfee2edcc
SHA256 8c1e099fd0ffb018d78b62d0678a3df937aad3f4dff06f0f3c5e04ec916d2fb1
SHA512 ad5b236a1233b55a13218d8d1ee0e72e598fb5a8aad4c71816bb5abb96340b8c1d8fb699e3334d2cab43788c081b32ff83513eab641140734f2cf7d5af5b9d5c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 ccf903fd84b21dfbef07d2141e269eed
SHA1 9e277b47edaeb435304f1da936931052b6aa2462
SHA256 0cbeb7a9f125369bbc1b582b80fd8cc41a54b645fe400493b4eac63f1f7de089
SHA512 4929043603ddb1035aa033c26dd9ccaa48f2e482775faabe6b4a45b2afaaf6c4eb88caa9f2771e6515d0a94cc9761527acc8fbabe7b7028feb448cd31c4d144f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 a26c565a8e126dd21be51a0bf6c03cbe
SHA1 7d9919aa0c0d78fca289362f7a1ad257dfa780cc
SHA256 8d2e50e34c4d83376488e8892027a2b62e9f2a6ec5b7aa9ae201b0a4233b9c6c
SHA512 29d774074b8322633b36601dcf74b92280b62d36abdb8d030fa12e5eb8c5ba5c3a9929fef2a4296bb96983b98d5f6f6e9dbe91036d8e7159e524c715c01e320e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 3476db62e93013cd6e4c83ffea0f36f3
SHA1 d5933e544bc7b2eba878ee9c77ebbbd4b87053ec
SHA256 ec06b82bad4973a48b724236decb9b5e8c85698bf4755a69d6cc5a1b5bba40c1
SHA512 3ee7701bebb814571e9398b14883cb1c5fae6aeaee1fa87bea4c9d2414d3254e4bd70472be359befb645ebcadeebe4558d509bab18f958d7419419242ebe5e8c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 5f7cf2ec8bf4193e1f3c681796ed709a
SHA1 b18191ed6381dd5f532fcb32449d7ff593e5b47f
SHA256 b0ae954169eb238a9ea59c21b5ef6faeb5b4a72131da772ec1bc1e65fc8c0638
SHA512 292ceb27994b76008d900803a08e9b1f376ccc5d1b6fa60a9733e27f1f2a6cad2933ecb225eb2ba4f8ed1e2747c540d0fd760f0c14bd3cae740cfef0a3de3fd8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 96a6532e0f8f4787addd7fbca25855da
SHA1 cea4c0b1edc6ef6f681ab4e3342cd7a6076c08e0
SHA256 cf84a1d001662391a26c7ae8f13cd4399fcdf588c4468a0518957f7e00edc414
SHA512 c7089e451f79c8bd0468e7a14e248198eb16b064718a0a9971fa43234f31ffdd7a62db358f9e3b1b2a47858c461d96065cdb49570b3c454d273c0d84e209f395

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f86c693a5461f47d73a3fe430b71b072
SHA1 55f307a6ba034f6774b18ba19a6878a7d3929069
SHA256 3ed6bcd09406b58c1a6675111ac8ea811186f0428a58b8fc700aa1133dd3729a
SHA512 971ff55141cddab793b3f2594132d5485f9d70206d59486dd5fcc19b435a8b2d798d10aa2bd6fd52fa812979f67790bc0ccc57605552b3a8ae3fcacd49a9e8a4

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c1ecb358396ff585803355b518c6b2d4
SHA1 94709702c94b8e3f14438705b396a77204efd904
SHA256 a08af0405bf1ed5660cc5e9b4a8535a671ecce501f8fa29024a2bd8e659ca042
SHA512 b127f1540ed5d23f3ac782109e0f53ec1b98636537db189c375c04f006b76e1a75c45335bb4a9726bda963075646ee198053dd86764afd7a3e7d08d6a6292f99

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 32ab20a8b01abe20596eab100d570038
SHA1 7133b51b16a06e475263612bb8e0a94ea89990a4
SHA256 f204524621bf603f7670b9320e8090618233397eb4346c4819036b8f524f4dbc
SHA512 d7e48b55e8962e85bb8ea3cde53ce54592a3ee965c05832003d961a4fb6b81d76f73f78360bc4b03021bf2795e7584f1b1325d55ed4fe0f996fc43b47358b39a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 58d9a12d617551e95b886c99de08aa20
SHA1 ab160fb2f746de2ba5b1529ffd299c61637408d0
SHA256 ac193483391206d1a9e0855cf4b7035ef40f8e8e4e764fc0b7377da80dc4ae49
SHA512 4aa01760adaf85b4fc6e5601d9bcfe2695cb68a88062ac74a50e956df33b5970638f8c65462b17c224bffe4c5f521a3b4e4860a9c12f1aa5ce5f5f8d2d48638e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6c4ee998ceb0235fad50a2e6965c6915
SHA1 5a4f1289106e99873d1ccec527d7ab90953f2048
SHA256 03964494bdbe0edfd0463e9ecf73a32dae8fd9a98562f3dea0b675bf63c2797c
SHA512 4436e4c9bc81ef823c74cac4fd00ff3af9025dd99dc280b06d3bad7f68e3f53e0e38bf976cf9ce52324442dd1a7702a81e5e53291758e9364f4d9540695c987e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 850a1752b46c3920a16ec5524bdb4325
SHA1 84878afcc6af6b5236b4fefcfa72daa77859a35e
SHA256 4e1bfc8963b226f1560e84bb476551a6ec16fc0b59d7126c20b99e95632883c1
SHA512 342b67b3ec331fe04454a3599f1342271de05b87a036f32bb112f2cc760eeaa74e47211e991364f7677ad28f0d771808d592290eaec31454aba57fd7db161bd1

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f7bb0e4457990de6996c31265a590067
SHA1 4344faf5dcff9a5026a7ebe379e25a8169d10f2f
SHA256 4ae7982266c5d5387e5fe6f8ef513cf184d6858d59ed6ae3329f6b3219a1613e
SHA512 5f37927a464fbabd7e23a4c4da658557316b524f948e4b0cb67739ba5f1d3a67e3e32ae4bb7bc478c51196fa8af7c270a91bca660909d23cbab891e36ac7e3c8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 45665e23aeb3adaba57ac23527902b9c
SHA1 e6db1fcebf4ef84624f69dddb590c76ff3e21878
SHA256 6473a432cae7f0b8488d7576997f2bdc2ee8d87b250a4c2b1ca756f40e7dafc3
SHA512 15bce8b70852bbb00c78cdc6b6e8b0c0713edfd2030690109fccda6859e288d63991b162f7e6cf1032c7a8d859658c178e567bc7da16b86170dd1a3f815b2d4b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 3dd16040756ef3d34b6608b095f724cc
SHA1 339a0a7a8ec6f5a7c8a28fb06ed3c901bb7dd56b
SHA256 5fa54c88dd6e19fd6a37fdbb70f139022efbdff4950ffde650c94991f0fffc1c
SHA512 6065cb4871585be12d35d90ff476a9bb2ecb6a041cfb54f5e17f84210fe6f1e8285b50b594e87f8a4a680ef658e3bd86e305e2c194ca01a338e3b0a1757b0fc0

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4339c036d4b3ddc689473ef715a74909
SHA1 b5fffe6db5f388ed21a6d89b4aa43c69b585fa04
SHA256 238c64f8ccf91cfc2a89afa4304aeaee49c360d6c4b06dc4af37c8158221d188
SHA512 75130307c2be3bcf1cd39955ec525e7a35222eac01be7d4f8b0c9f4e8b96d45a120c4ad0796051ee76f6e5dc85cbacc0dc73ca79ef0f3155704ebf21ec35d6c5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 3735bb946d2f12b01a0d91b601ad55bf
SHA1 d579f4c47d49b32cd871635f6956c25d94b64e2e
SHA256 6a08ceac2fbb6824d4a4fa17d25677eee40b3614b4d5caddd04926ed1b278cec
SHA512 661755cb3535661b64b89727d81e8ae27ecdafb61f53ebbdd14b6add7665c05e53e6fec98be1ed659a2c65c80bdb0a982fdb464ff05e35e9d372f0cdcfd7c216

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 195596b0f7ef543754b770bc1c477c10
SHA1 f7829143670e29ba4c1be7317441d2d0de1797cc
SHA256 3efeae70e25b8ac5b29351674abdf354b36c634117a459954eef26b0bc6447fb
SHA512 217bb65f9cc2dbd5470c1f54219c100e7180f3811f2cad3bd80648b84defde4b8f2b4104c70b804fe5e70b679caf749f4d22a7b01a329ea37a3f3a74613b5614

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 161fd53be2f91b62935a0795f199dbe2
SHA1 9c7505116a667ef31efc708bedba39b09a32c659
SHA256 6443db84876215838a90dfc64c3f5c9bfa11566121077ed49f711db1b24e5c64
SHA512 ae3a35149737d87b15948dc9b691c96f3edb816d983acdcfe890a21db8d4fdb27552bdbd113e352d9dba2587415006aa2984be4126768dc95ba0808ac7dd7c62

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 dd39922e23fa7fd218b7cc183a8756ed
SHA1 3a1bd9afc9b1e541540875fa408ccbe76b9afca6
SHA256 00a3ee532dbccb6ac73a944c6faee9b0743c29442d81d3a136bf362ca06c3fb7
SHA512 9f622d1756abfbc7f55a427c048b9652b0af727a0148423ca7a19409e480571ae6f3cb68a86fcf8cab4d28c51b8885735bd0e3356a87808228f9cbd37ccfd1ea

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4ca568795fc621b229407dce1ee5f876
SHA1 a57482c27613f3e744b5ba73f304debaad49ec69
SHA256 ba6380f114d6d4b2930e6d96ae4ff64c5c325f42ffa755d3789bac90b5fa1f74
SHA512 48a0f28cf3b8f83d9df655585fcf9f5d5200af5e66f63f52c57386577e3191e64af951ebc2e07e9a4ffc2f0799501d22b87f99bf478c796dc21e2417f085c2d1

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0076de32f1f8d5b2a752ce1e21051551
SHA1 400d9270b919f1ebc53c4e7d7ea7b01b6f37b776
SHA256 6523b2d5ec00d7b83201ea08913ca58b297aef7b0fd4f542aad56fbbba2da365
SHA512 ce36cf39a1ce6afc013daac851e98b8b1d9c687e0220cb710cf83e433f4beb00080f2a3ed6cbe362b5ba02d8d51e614ee3c382f844fa9eb10562632c60377d22

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 668f81787d210e2d73fa676623684990
SHA1 9d8f46059a1e83088e2dcb8259f70bfaccd796f7
SHA256 c3e1ddb4be869610473de2a1ba59d270bf1123a775fdef9eece8cfaf1b8b39e4
SHA512 3252c94de29cda64ad49f455d2a9c1c64b09a36ee8012604c526d63bc698af651282cf6b9317cf67797068de1c2f2739be837c295400a6e4df203997754aec1f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b863b44804846eb650de5ef0ec2eede6
SHA1 0d9d7678e68dd88cad21c8246efe81bf7069553c
SHA256 0caaad9c84e39b3da6fd0ad42e64de86915729cf7d3fdc4ab48c2b54af613ee7
SHA512 da0dfeecf4ab17b20842f40361154ef274792892027e030221610b707d7062f9fd98afa37fb6df7c32de3b9f000d7a132266fc66de23057af2b866eb605ea4be

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 35873046fab9ede6592fa9c07f9a7810
SHA1 7b00a20b27254ce9d6f15a4a46950b90aa7a2aac
SHA256 9b33456dfdf285f809ca23ea86ad52f6c852ae72f9548cdf2ebda868e7f004d5
SHA512 7cab67c000dea81c042ea3b289c8601d4400bcc5ace2828879c71eab9e30219aca5785daf893061947fec42eb5ae91a0f717214bd954139c5740cdd727d3a510

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 39c0b72a110d52be64e72eea8773ec88
SHA1 c40f30f8c6a9796b005af82bcd26b2dab834dcc8
SHA256 98d231371813cbe7ff402b130bfc0dd538dacc4d8950611b9087330ef25b9f8d
SHA512 c57018bb6b474052df93713b1d74be3f909633d6a70e92524b112fd4258bb29aa8d9037f1692f8bc31e5bf3afedd181ee8ee4892023671f7aa4f32c650c361fb

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 4e897d58c982760817ada3026b3d1fcd
SHA1 1ba5ae688ef138b5863fe3ffa8134c2ee7f9460a
SHA256 6efd7feb39eeaaac26ee3e5a441cca7cde389bc41c3f4c23e48a8cc0ce180f99
SHA512 4a06e7262bff8ea79c87d6f1cbb40fbdae230513a583ecfc40801184d58b3d4d507d8af0a91c69d3b0985127471bb7256a24b90065c42c20ebf358836d1f14f6

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 3f40619fa51f58cf3a8742d779be1f76
SHA1 519bb57d8a4a59e365ccb55b95a31e4880b69e88
SHA256 ce32f7746e366c42647fc75b3e2bc6687fb805b5c5fd6ce0a7ace860f51e96dc
SHA512 58e10986d3d6db33c3150198f16a42aced9b4142b4f7a929497a5843dbf77e0019d2eb133086b91ffc8c3ce8880df2e22d3d19ddc6bee06dc7f6299e2f0c9f27

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PXFWYHUN\www.youtube[1].xml

MD5 125ea5c8e55e0f7ccaaf752d250fa9a1
SHA1 719d5cdfa01e4c3c907f34201d4ecc89293fe138
SHA256 7e524aa18efd98abe9f7823f677c26490a7bb2221fb49f5ecfc4fd8ee1fc35f4
SHA512 de2a7a18b14eee5d0a4e669d326b83fd4162f434f567e1e225740b5b15bd701e0a8cdd621922f6b46551e781c22fd386f38a5efd948d2c782e49cac5bad7b296

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-25 00:38

Reported

2024-05-25 00:40

Platform

win10v2004-20240508-en

Max time kernel

135s

Max time network

139s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\704ef897f12ce915b61a5c8ffb00f039_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\704ef897f12ce915b61a5c8ffb00f039_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=4004,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=4992 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=4300,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=5060 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5272,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=5280 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --no-appcompat-clear --field-trial-handle=5288,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=5440 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=19 --field-trial-handle=5636,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=5652 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5696,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=5832 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=5980,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=6012 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --field-trial-handle=5808,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=6180 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --field-trial-handle=5480,i,2607710392823067546,4648797561512801463,262144 --variations-seed-version --mojo-platform-channel-handle=6344 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 13.107.6.158:443 business.bing.com tcp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 2.17.251.21:443 bzib.nelreports.net tcp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
GB 216.58.204.74:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 216.58.212.238:443 www.youtube.com tcp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 216.58.212.238:443 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 216.58.212.238:443 www.youtube.com udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 154.239.44.20.in-addr.arpa udp
US 8.8.8.8:53 21.251.17.2.in-addr.arpa udp
US 8.8.8.8:53 238.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 246.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.187.202:443 jnn-pa.googleapis.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 23.159.190.20.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 88.156.103.20.in-addr.arpa udp
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 183.59.114.20.in-addr.arpa udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
US 8.8.8.8:53 198.187.3.20.in-addr.arpa udp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
US 8.8.8.8:53 55.36.223.20.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 200.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp

Files

N/A