Malware Analysis Report

2025-08-05 16:07

Sample ID 240526-edre7aee98
Target 743dce452a3a8120fa835f6e85a65301_JaffaCakes118
SHA256 f8bbef1c22a0bf833eeee07e03a9c96996a20c5972d6801a7361d52dba115675
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

f8bbef1c22a0bf833eeee07e03a9c96996a20c5972d6801a7361d52dba115675

Threat Level: No (potentially) malicious behavior was detected

The file 743dce452a3a8120fa835f6e85a65301_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-26 03:49

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-26 03:49

Reported

2024-05-26 03:52

Platform

win7-20240508-en

Max time kernel

143s

Max time network

143s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\743dce452a3a8120fa835f6e85a65301_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000760f6fb6d7365248881a38bcea68cf8b00000000020000000000106600000001000020000000358870feba3e6071ba76afde04c78b5c82ad044246c442f18101846135a6a6f8000000000e8000000002000020000000468aac4a2b9b8cff6eb611cd5eab547e884973c75c3bbcc9ec9d4378aca567d52000000022416fdaf67085afbdaf0e74fb8edb6fa91fb83192baf9e0a8121651d1686ec54000000078efa03b35a03f12a77151c445ad7e753507727bea198b4a7fd74ef2a92db31f629867d5bc2800771963c200b00084b05e7f5000deb1896c70d6800d913030c3 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\DomainSuggestion C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{00303A81-1B13-11EF-AE43-7A4B76010719} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 00024fd61fafda01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\IntelliForms C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\IETld\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422857256" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\LowRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery C:\Program Files\Internet Explorer\iexplore.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\743dce452a3a8120fa835f6e85a65301_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2072 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 cdn.mymediaz.com udp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 8.8.8.8:53 apps.identrust.com udp
US 8.8.8.8:53 apps.identrust.com udp
US 8.8.8.8:53 apps.identrust.com udp
US 8.8.8.8:53 apps.identrust.com udp
US 8.8.8.8:53 apps.identrust.com udp
US 8.8.8.8:53 apps.identrust.com udp
NL 23.63.101.153:80 apps.identrust.com tcp
NL 23.63.101.153:80 apps.identrust.com tcp
NL 23.63.101.153:80 apps.identrust.com tcp
NL 23.63.101.153:80 apps.identrust.com tcp
NL 23.63.101.153:80 apps.identrust.com tcp
NL 23.63.101.153:80 apps.identrust.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
US 8.8.8.8:53 x2.c.lencr.org udp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
BE 23.55.97.11:80 x2.c.lencr.org tcp
US 8.8.8.8:53 mymediaz.com udp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 8.8.8.8:53 affiliate-robot.com udp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:80 mymediaz.com tcp
US 199.83.128.193:80 affiliate-robot.com tcp
US 199.83.128.193:80 affiliate-robot.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 8.8.8.8:53 static.hotjar.com udp
US 172.67.196.74:443 mymediaz.com tcp
US 172.67.196.74:443 mymediaz.com tcp
US 3.162.140.18:443 static.hotjar.com tcp
US 3.162.140.18:443 static.hotjar.com tcp
US 8.8.8.8:53 affbeat.com udp
US 172.67.223.127:80 affbeat.com tcp
US 172.67.223.127:80 affbeat.com tcp
US 8.8.8.8:53 ocsp.rootca3.amazontrust.com udp
US 8.8.8.8:53 ocsp.rootca3.amazontrust.com udp
US 3.162.145.64:80 ocsp.rootca3.amazontrust.com tcp
US 3.162.145.64:80 ocsp.rootca3.amazontrust.com tcp
US 8.8.8.8:53 script.hotjar.com udp
US 3.162.140.92:443 script.hotjar.com tcp
US 3.162.140.92:443 script.hotjar.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp

Files

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0F5C59F9FA661F6F4C50B87FEF3A15A

MD5 d4ae187b4574036c2d76b6df8a8c1a30
SHA1 b06f409fa14bab33cbaf4a37811b8740b624d9e5
SHA256 a2ce3a0fa7d2a833d1801e01ec48e35b70d84f3467cc9f8fab370386e13879c7
SHA512 1f44a360e8bb8ada22bc5bfe001f1babb4e72005a46bc2a94c33c4bd149ff256cce6f35d65ca4f7fc2a5b9e15494155449830d2809c8cf218d0b9196ec646b0c

C:\Users\Admin\AppData\Local\Temp\Cab1B9E.tmp

MD5 29f65ba8e88c063813cc50a4ea544e93
SHA1 05a7040d5c127e68c25d81cc51271ffb8bef3568
SHA256 1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184
SHA512 e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

C:\Users\Admin\AppData\Local\Temp\Tar1BA0.tmp

MD5 435a9ac180383f9fa094131b173a2f7b
SHA1 76944ea657a9db94f9a4bef38f88c46ed4166983
SHA256 67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34
SHA512 1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6b4a415ff4dace0a602668235968af2f
SHA1 9bf1a1ebd4d8166bcd485d8ef40b8ee99f9bb92b
SHA256 fa79cef7d0873e606f64fe962dff839e41581632294d81474e136d8ff8352e44
SHA512 efaebc195e70be6c1eaf8e23812ffb910acf3b9f5d51bc0c5b84b2fd3d1d13d1a0c4dbea0eca2b23b7e4f5f002c946efb69627d9de44aa9cc7a45d8b6e4e88d6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 bba859de36e8a2c503fbf8bdb6be04db
SHA1 87cbb4d92c6fa9cd7b4e413d8d3f4e3425994e5a
SHA256 822a3e2a5b6ecd6e3d860891a1eb82b60c3e11a0466d39f1e1c4e86896e0cba6
SHA512 593c52f2344b87b04f4c38cb0009bb7cf2f9fcf7c0d056a2621e66536a93c8e0b9f3bebbbccb7a145b4e1ae5311b1ea3e633ba999ef14f66986651ab29f1fa1c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 1e844160341f00c07c55e540dbfc0c98
SHA1 608749fca3797d23a914a0bb36a7ad161f7adb78
SHA256 6e491bd384fe68c2f74332645454c582592d1f17915ad25d52ab06c84cbb5a4f
SHA512 7fdac6979316f888a4cfdbbbdc6ae024967481190ca17d34ce32772ca406133e3295de42d40bbc47099be4a3d6098917e8e9ab4f536b6227983ae79077b2af40

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751

MD5 6037961df22687f00e37a702c93cb6c0
SHA1 5a690882494cc78deb4136c76d223af6655870fb
SHA256 1eec1264ed7900f989a1550a47bedd7730043c6e36b3c206073ee44497a348da
SHA512 7c648f9b66e0844fa07fe01b58f2976978168521f282447a250c33dceb19cc4d9181521fd1a2973f1a3195d4067853b5e2bed0997ab67b0e14c31b394a146c3b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

MD5 822467b728b7a66b081c91795373789a
SHA1 d8f2f02e1eef62485a9feffd59ce837511749865
SHA256 af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9
SHA512 bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\1B1495DD322A24490E2BF2FAABAE1C61

MD5 a8b98d500c00c5ee3013f14aaa85a45c
SHA1 d68281b2db610ba54de90a680591f575f46401ca
SHA256 b118bf29ab6b59232913d407c5d63185d150294cb9e29eec64a750bc0e1f4d42
SHA512 b838e672f68fb0df32995c950c9d147be3c45437d4bdd620a2f3d6486cb14748853727f1c52ee893ad049a0071a5dd08cc8df1174d5715133f49a2dd4c361b3b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1B1495DD322A24490E2BF2FAABAE1C61

MD5 5ae8478af8dd6eec7ad4edf162dd3df1
SHA1 55670b9fd39da59a9d7d0bb0aecb52324cbacc5a
SHA256 fe42ac92eae3b2850370b73c3691ccf394c23ab6133de39f1697a6ebac4bedca
SHA512 a5ed33ecec5eecf5437c14eba7c65c84b6f8b08a42df7f18c8123ee37f6743b0cf8116f4359efa82338b244b28938a6e0c8895fcd7f7563bf5777b7d8ee86296

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IO0LJX84\EO844M4J.htm

MD5 0104c301c5e02bd6148b8703d19b3a73
SHA1 7436e0b4b1f8c222c38069890b75fa2baf9ca620
SHA256 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
SHA512 84427b656a6234a651a6d8285c103645b861a18a6c5af4abb5cb4f3beb5a4f0df4a74603a0896c7608790fbb886dc40508e92d5709f44dca05dd46c8316d15bf

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 1796c2d214c682b29d7a9e117eb627b8
SHA1 14ebf6bb42f4db9475ff82e9e848c301cdea79ad
SHA256 496d53ecbfd9ddfdeb218fd75ac8165860443ea29e136d0855971f686ddcc515
SHA512 7ca8da2889463aaabccb1c9a07ae616465c47d5ad6e3f980a4b3a4231f6f55ab059abf892fdd611834103bdebfdefa46bf4d31e931cb7cb324614b2db1ece74f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a8248a55ba94d3001298681fff2558b3
SHA1 08bd03c940fdb7cbcf3066ab67f23cce03cd5cb0
SHA256 a952d3d00bb4dbdcd693b57efd87bda622e36a7a30d3fd897c4d125709d3a8a6
SHA512 8db2fa714ffda15e2d2517f7bc5867ebb00197be6a1f992be67215cb4debe6bfcb50330671aff19ce81f6fc961e76ce1ea05d7e59643dbd48aca4a888a564dba

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 eee6eeddcef87f707650eb15091d1b79
SHA1 e3147d100f1504796897a20c7fdb9a90545586da
SHA256 64c6910da095f948c6ea88ba96e3e3623572fec3b8d323a782fea81b033f30ac
SHA512 b31363f707b82c01c02a006cea4eb1773ecf07d4518c836c678e8819c3e03176408946015def4b7623967da5fa70078cb19e6746ab5356fd48ad135497d42397

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\52G8PVLC\1ZDUIRU4.htm

MD5 c49f88642e2b9ec65706c7560e555e39
SHA1 fc15493c26d50b3dfabb63d72abffe2423722287
SHA256 826765f681b29ffa8fce7f7694f5d5b2f28a0d1407b489a65a8366e510a8488d
SHA512 f010c70f370c5a16c4c82f3a8d254739f3b4fa922de88eb363cc4ef2254d6bee7c3d7bed04d4aea30d336d2f4a07b1c2dd19fb2891d2820f13927d5f68342223

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 164f8ca5bdddab6bf4454eb547436853
SHA1 f6da2282c9629a8c6621dce4b61ea8fadad891fa
SHA256 7293af22bf2e8526c2cdfc9a1149a58c6138da961ed27391f68a0fd52ea03046
SHA512 ec0cd6f0b6b66958c2eee65cca40917871fb53574775595e3af2ad0c20138dc106d88047681c1abf909489ea202f03d33fc8cefe531352fbd675122503751aee

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e3fd123cfc9a5e25419f53136dc849ce
SHA1 fcb1d4cadd9673f0850d277598325d7f5b08f066
SHA256 3182944c65890872c538b331b12618032415cabb1d1e583a7bc00e5fd117cd43
SHA512 0b9a72d69a7a562ef679d4ddb373750e5fcb645e8465d641de79254d25593602fa9743c4b1722f221b4090686d3d0c64b4c5c560bd6f8dbab95e800b99fcb551

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d7e8a3aa70b74f87950b35648dc27995
SHA1 2b6900bbd5e894b3418a08a84f089cde3a2cd280
SHA256 472884134492c47f8472e3a5316393df3f2fae7b0ef5fa1ed552faf03a300a03
SHA512 c28e51202e236b88972d316e611249cb3fd46f888bf5c68f2b0826732b3315c08aef1172605766eb0001bccea5cd3eb1b010336e64f9e910ac3d132431f120c9

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 cf6d08ca4d5e543c975d41661bf0a8df
SHA1 9bbb123cc2441d42fdb092367212f66a586ca8d4
SHA256 cb9057ea7347aa6d046c1d60468e0f7d012359a075fdaf9d7ee2c565c646745a
SHA512 96db007c1e0ba9c66b8c6f0b1ff9e25181f7ebdd0e66c08f1367d96097e27c883976896b50560734574c17ee16f2f99dfdc442a9b3b02a4edcfda4ceaf16c20b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 baf25ff36bc948455e9e8bced8f60a16
SHA1 7c289fefe124e833ff1bb47728cf9ae218a90cfb
SHA256 5f7f96a1c033d9a1fb3d1712d365083368b2f8f969225c70d4749a00f556d5ab
SHA512 a74f6bd68ae175401e2e561b9d042d7027e63a8ba25d92627b9d7dc178cde735ef3005caa3112ee90beb25ad89e38c3cf903645c7f3f1e47926d792277ad79fa

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 9e2bdd165e7bf30b2b907004687d5b3a
SHA1 43eef5b11cd06f84016bb9a183795e03453af646
SHA256 c61bd70cc008b1ded761d08f99d87f94e2144e3d8d1bcc2890dbf9a45f6f5578
SHA512 8d0de21fd157e0664f1cb128266b431d1e8b666ec38e93e2efd0af52018e105e6528144f0630d06dfca6aa50a2c1452563b89d8e73fda3893c072525810eae4a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 69944d2e1247f9dc1f270ea3690d4aa3
SHA1 bae6a7daa32354b07e9157c69084aa3a0d05cc84
SHA256 d1de1a6e7bf9b8b01bb17d729f20aa9fa6ebc85b6afa52349d63c498e99d5668
SHA512 6214988b913c47e535f3fd381a4b6017d30681f0581708097438e0b03818d15ba7574c89eb59eb6262ba8efe2156405932e2db9d9303f1e056ab41f8194f8008

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 84de26d24424c1fea0d254a54352b58b
SHA1 6b890fb696dcc54d9d530af2cf7181524bd88a4f
SHA256 10247dadbc1883ca92daf1e2d9432b26b569fe2b7f9e3ef36a2e8b147e2cc944
SHA512 efb5c907b3a2613f110bcc29c6dcfafdd482fe5c764a3b633d30b672a70d671636a72bfc2fb2d6f34a16b96f7a2489efb499685c025de17f5310bd86cf34f36f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

MD5 55540a230bdab55187a841cfe1aa1545
SHA1 363e4734f757bdeb89868efe94907774a327695e
SHA256 d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb
SHA512 c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 59476cc82c70cf59a452d98bc8dd9666
SHA1 7adefed152bcd59649aaa15e9415f6d319f73599
SHA256 0e4809ceb965be60c84d120f83335fe5926a608c04d1d67cb5290d5ab073e52a
SHA512 c903187a893925b8ffde8ae2876592f1456778669a7ac6e22b18af407fb64cf0026c657fe34c2e01dbedced8ae4dd523231d6586232ea4debe5aedf3b8b0108b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d320215c31d22c043222ad8fd9295cc5
SHA1 4058592a03664206b15edd814f7a82eed3a406fe
SHA256 1ca045153f3512350aff091110b49483c4d8f6e68e9ae98d3f9a26cb650e09a5
SHA512 21ba90ee14d113d8454fb78f39b57768e6345050fba00f7d04f889d2872a33126d84246093ecec22bc20e31180b9e8acdcb007ebb342a0b6e597ff8be44e5632

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 5f5ade94678a18a20a7b39a9bb0a9be4
SHA1 54bdd1759aca1d1c88d862dbfb4ee23428cc3f1c
SHA256 1034e774dcb849a6516fdcb9b38087fdd74236c5047a9c7419882af0e535ad6c
SHA512 45f88f3f6901d8ea82088531b2377cf62e142c22680333732861dc00c2daf32155d73265caa2672f006ab13b39b96f3ce8a5b4df52e08db48ac1a710a9fc0dfa

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e39880b9183e93bb23a9b1f01986429c
SHA1 9ee03185685d59b0d329710d91906aadbb698fde
SHA256 9cf6b0ad6a5fd3ad8746122da84c2fc8ce0b3ac489834611fef85c199162777f
SHA512 cd469816d08bfd33ea547bb9e499e0bda8262dc7bd0f114b4f56d7a1a4768856b2a153f93306065dc082f7c33bfbe06b4a27c69725398cb5ae88d99e4e1dfd2e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c9d9bca3e09b76796c5921be2689beed
SHA1 f8879657d5f3bdad00047bb22e488eb93fdafc5d
SHA256 2e74ad5035dc96f8a79b6fc44d268c4e3551f528a3a83fd6c70f12d903054952
SHA512 ec3641d25fbffd87facb9ac7065896036a0eed3f7f6c11a49f398fb86bbd17364388bb1d6cbad0c62545930f4a3d9ab4bcc98f02131ee8834e87f767c4204472

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 85cadbda733cdbf67b1bf1b04d60b0b7
SHA1 1f7f9234739ce260ec6ebe35bd26806ef60ca814
SHA256 2a145a1c4fbebc6deb328902f9175a215b2dfa4f8eea068373229621cd2461ee
SHA512 22b14cb34b1d96d9e8b240c4dfb414a3fdf3c36b7c27be62dbf97d59aaafb0d337bf5750559bdcde8ee1b152e68cf0668a502610e9c10e28c53458350f46f7b4

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 bbeaabf01d3d3122f193360c295e4b41
SHA1 575580affa38e8894d69628ed2d1d31fbc6cb6e9
SHA256 297fcdc0995bb4021e165b834e8677871b8f679231be7f9152782377b7e75045
SHA512 4b46037d2ca9893e903511f902699b6d32cfe94b228a8e60a10345dea905dad5fabda35f097ace16987a77475efa254586a10320e6f872b13047bb5c802647a2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0ebaed0573e689845bf1a9e97b7821a0
SHA1 b67d7673b1f6c927a21b590ba733140fc5a4a1e4
SHA256 312708e38165aef03c69ad84724788f685f7ebb3655c2e22426ba64f2abb225a
SHA512 8686abaf64203138c108ad5e820ac46acdc8c0bebfbeca9eaa3c1956fb1a79a63f4d0658593f1661eab3ff95768393fd978ea1aac1c7ea20288186a5622f5e94

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 01db43cde6cf748cf7c5d17e991e5d1c
SHA1 8929593bc08bf0b07230263d2c150de2f675c6aa
SHA256 5113d679cd5dff7084236ed23eba2f2557fb56e7f722e55cf57ca92df4856472
SHA512 90251d2d7e14941358ebdd88f99ee2ae3f5e263dbbd0d75339f6bd6fe12e468ca02daa6cd2abe4d5d4d1cb22d05329a9d19205e04859b2da592c5d4fdbfab266

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 10ea4228e7533ca257fde472a0ff7ac0
SHA1 d1fffb21898e5f12036e4b41f6d0ea3615d68d21
SHA256 f5e7dc593d4c49bad8c39dd7ce82a620449f917dccf68a8ba1b5bf1d66dbb70a
SHA512 8a5ddbcd68251985c2fd00cb99d4575b4656c6d9ecc2977cb510eb2087fcd3d614f605b319be83034dee3d8999fe7977a234d15f54bcea612ff93d5fac47d99d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 92d20923199bf53010f8542526abd8fb
SHA1 f8dccd09ac304cc2269b484df5e6c318704b1980
SHA256 bbb58dd726a5456e52e862be8cdb96627f5404613fc0232d82c5381d9e281ce1
SHA512 c11ed59acce9fa617934c8fc218571a0f0f7d79b98e8e075eea80b03fc455083910b339e74eea313a0806a7e4b2739fc47a7e41aef8ca8805e83d68f18c5089c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 90d91cfa4f455ec165018546c6a76683
SHA1 a536582f98100220e6fbdabbffadb8cb590d3563
SHA256 01fd3c0f44fb97df4fd38a694e606adba99ec50d86f1cf0168e6ab2571b98fac
SHA512 aba3faf090d12e38158bfd418d47f32ac7d4e83c38c37644a0a805ed7c8e1a75367b608c0164abc656d25cd40b9212b795fd1c55dc0d941f4229c7f012d6275f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 354c6c4044495a113c0381afe256049f
SHA1 99c65eaae8082032d6462c3569a8416d6777b38f
SHA256 50ee4b26bc2adc7e082e46e7c4c673db2b948a43beb71d66c8e92ef49ff69e0e
SHA512 00e659cbdbc819ec1b8b278ec61ab1e691632261538abf4ea4801589bd54168ca8c4f5b8920390cdcf2cbf229b293bd7507c8a248577471748cbd040112efde4

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8296d4229b631daf48ac02aa8b468ab6
SHA1 0625df7b453b79a300255684002f831fed9d56fa
SHA256 7c41092e4812cba02faca4ee86bcc18f926d4b7f4caba59cbf5d121a67d0c0cc
SHA512 671e8fb6c4588fde2355ca34ead469a87b3d9bcad773b753feae3e3b7e836e6ea140d1fb8061b853d7f96d3206e183dbf9f26398c43be68d59ea54557d9c07f8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 cc27afef326ff0ce078c133eff8a3256
SHA1 76ec58431b3ee0412ec127a02865fef9172df9f1
SHA256 08107e1f63fcd7d9dd7cf870c4f9000e9195f287a7216bfaa8ebc7520618e4c0
SHA512 a82397c700bdb0421d1be9032fd65725715b076795caa75c407328e2ab3cf608fdab9fcf998da83cd9734d4f5fb37c4a71eed8165e442f3a1b9275404c3d8019

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 9546ba0654ec3452a71ca726fa5cdd6d
SHA1 373c6095972ce0ecc04a0ed0ee587313c5e0872d
SHA256 995a5197b99047c6e588047d1e38d0a373d1bf29356cf07d3a372407b5304eb7
SHA512 7902fb4f50c5aa29435f01039ccd55169fe1377d5eb5b7ebb71d559baeebfb19979cd5feb6271cda4d85b0b95eb49e8e8c141c58b87089ef434fbbd6006e8681

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 06b2d4a44b4bc5fd8ee93bc7c9d74c91
SHA1 1fb79b346b0169313c0b338428e481d324673f02
SHA256 51d8e9c28101f86f243294cf446151db2302d76418ee08795f9a002d1fb4fee9
SHA512 a8cb8e882bea6b68760e39037044fe3b2078bb90218ccb70ce7d16c3be4ea599dc25eadad2b769698633817f15c6066e3ddcc73764ac26ed88f7e0cbe2f6cf89

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ec763b47a4aa82166636b3f34cbc1703
SHA1 c21af91df1e7cfd5942770e05012199c9feb78ff
SHA256 733426cbd20d65464b910a4561fbce73d861dfda4ee0a9253363e3e11ab32fa6
SHA512 1dbbb161e309362f5aa8465ce31aa322187ac8d89055ab979ab335ed1668284bceeff0ad4739a7ac33274c5f62ea200f6981a44c85b19d5680bf227622a2ede1

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e8aa29876f19c18318858ea0e851ad5a
SHA1 4b705f2c66039a0894ffb9b5fe7654fd11918b45
SHA256 080d50e0e8cf51a2ede4f3b067816943d84dc989962cc15741c593116bc78f51
SHA512 9f1b40b0eebb4979e33d50fccfe20432b986ee637b13ab5142cf55d9eea4cebd8921dec27dda22f6526db5b8e56527b12ec2b560bfac31ea99c80cbdbf54f905

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2cc12bb3e0f288132e8496dae8f411bd
SHA1 830d73d6757cbea7722b335bf15477a67e499d1d
SHA256 1eadc78ae2a1ec51e66d79aaf86a5a53d672e9a7d9d4f48882b95d59d8a188ad
SHA512 9d9636ff24f49e24f633b3a59ec6ab18db2776b4bf568d97f6a4d348eb3c81e44328fb8e0674d5ee74621f9624f9bb5ce319a02313ed77c67f14460ff35af046

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8300662a72e28d10195c27a4ee0fdbc2
SHA1 028d39f881d75c8263ef3c86b4d547211ee68393
SHA256 ec9a373df3e9bb5d9a0baafd0682feef5f5f36642880fbbe66798b04065212ae
SHA512 47f84ca8dc6d624616597ca6f3bb6e7ca30b20ce6a71addc35efdcd0b2dc9120ad65a1ed76a3f6947246c86820528b376e3a818a305a3c635e6d6185731b1db7

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 7fe3d40d3a8f15fd6a89a7096f90b8e5
SHA1 0d4513a36dd0378a8f9235f114e5b920b5d8123b
SHA256 0dbf804ad2a7a449f4e1257d25bf7fbc6adfc284f9d8aa5cd10f224b42d23595
SHA512 af9b3a7aa279a970662ecf410b08b9c25d870defcdaf09e80fd927e397f88f8a06842167d182ffbc68b907d37c1376e4d4444222fcca3a7fdd87c082356d11dc

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-26 03:49

Reported

2024-05-26 03:52

Platform

win10v2004-20240508-en

Max time kernel

134s

Max time network

140s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\743dce452a3a8120fa835f6e85a65301_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\743dce452a3a8120fa835f6e85a65301_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=3880,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=4996 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=3732,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=3552 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=5256,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5272 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5404,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5424 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --no-appcompat-clear --field-trial-handle=5396,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5500 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5264,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5956 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --field-trial-handle=5612,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=5912 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
IE 94.245.104.56:443 api.edgeoffer.microsoft.com tcp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 13.107.6.158:443 business.bing.com tcp
US 8.8.8.8:53 cdn.mymediaz.com udp
US 8.8.8.8:53 cdn.mymediaz.com udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
US 104.21.57.254:443 cdn.mymediaz.com tcp
GB 104.91.71.133:443 bzib.nelreports.net tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
BE 23.55.97.181:443 www.microsoft.com tcp
US 8.8.8.8:53 mymediaz.com udp
US 8.8.8.8:53 mymediaz.com udp
US 8.8.8.8:53 mymediaz.com udp
US 8.8.8.8:53 mymediaz.com udp
US 172.67.196.74:443 mymediaz.com udp
US 104.21.57.254:443 mymediaz.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
GB 51.140.242.104:443 nav-edge.smartscreen.microsoft.com tcp
GB 51.140.242.104:443 nav-edge.smartscreen.microsoft.com tcp
GB 51.140.242.104:443 nav-edge.smartscreen.microsoft.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 static.hotjar.com udp
US 8.8.8.8:53 static.hotjar.com udp
US 3.162.140.16:443 static.hotjar.com tcp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 56.104.245.94.in-addr.arpa udp
US 8.8.8.8:53 28.118.140.52.in-addr.arpa udp
US 8.8.8.8:53 164.189.21.2.in-addr.arpa udp
US 8.8.8.8:53 254.57.21.104.in-addr.arpa udp
US 8.8.8.8:53 75.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 133.71.91.104.in-addr.arpa udp
US 8.8.8.8:53 181.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 91.90.14.23.in-addr.arpa udp
US 8.8.8.8:53 74.196.67.172.in-addr.arpa udp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 script.hotjar.com udp
US 8.8.8.8:53 script.hotjar.com udp
US 3.162.140.25:443 script.hotjar.com tcp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 8.8.8.8:53 25.140.162.3.in-addr.arpa udp
US 8.8.8.8:53 16.140.162.3.in-addr.arpa udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
NL 23.62.61.194:443 www.bing.com tcp
US 8.8.8.8:53 affiliate-robot.com udp
US 8.8.8.8:53 affiliate-robot.com udp
US 199.83.128.193:80 affiliate-robot.com tcp
US 8.8.8.8:53 affbeat.com udp
US 8.8.8.8:53 affbeat.com udp
US 8.8.8.8:53 affbeat.com udp
US 8.8.8.8:53 affbeat.com udp
US 172.67.223.127:443 affbeat.com tcp
US 8.8.8.8:53 193.128.83.199.in-addr.arpa udp
US 8.8.8.8:53 194.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 127.223.67.172.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 232.168.11.51.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 157.123.68.40.in-addr.arpa udp
US 8.8.8.8:53 206.23.85.13.in-addr.arpa udp
US 8.8.8.8:53 22.236.111.52.in-addr.arpa udp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 205.47.74.20.in-addr.arpa udp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp

Files

N/A