Analysis
-
max time kernel
1487s -
max time network
1458s -
platform
windows11-21h2_x64 -
resource
win11-20240426-en -
resource tags
arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system -
submitted
27/05/2024, 12:54 UTC
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
ED62B6BD122.exe
Resource
win10-20240404-en
0 signatures
1800 seconds
Behavioral task
behavioral2
Sample
ED62B6BD122.exe
Resource
win10v2004-20240508-en
0 signatures
1800 seconds
Behavioral task
behavioral3
Sample
ED62B6BD122.exe
Resource
win11-20240426-en
0 signatures
1800 seconds
General
-
Target
ED62B6BD122.exe
-
Size
22.1MB
-
MD5
68eca888cb479f840503bcdbda3acc88
-
SHA1
609c73cd16d6a483dafb76179b21f329ea1fef00
-
SHA256
0f7ff1dda72f7da756a8efb610c9bba0a574442a8a8b48413dda54981d28c4af
-
SHA512
557b9c3743e5286ab3f21026dfab97c2608f47855a456aaf7cc893b39cfa57dc0df3000715b5da1f0993c4e6d06e84713329e2b190fd10f0d5a67b045da344db
-
SSDEEP
393216:H7UhQ5zzPiYfcLYnzjbLYg/GXv2pXpH9P3il/gsHoEl8h/lt8/QH:EQpKYf+CLHGm9PggsHzylt8i
Score
1/10
Malware Config
Signatures
Processes
Network
-
Remote address:8.8.8.8:53Requestbrowser.pipe.aria.microsoft.comIN AResponsebrowser.pipe.aria.microsoft.comIN CNAMEbrowser.events.data.trafficmanager.netbrowser.events.data.trafficmanager.netIN CNAMEonedscolprdwus10.westus.cloudapp.azure.comonedscolprdwus10.westus.cloudapp.azure.comIN A20.189.173.11
-
Remote address:8.8.8.8:53Requestctldl.windowsupdate.comIN AResponsectldl.windowsupdate.comIN CNAMEctldl.windowsupdate.com.delivery.microsoft.comctldl.windowsupdate.com.delivery.microsoft.comIN CNAMEwu-b-net.trafficmanager.netwu-b-net.trafficmanager.netIN CNAMEwu.azureedge.netwu.azureedge.netIN CNAMEwu.ec.azureedge.netwu.ec.azureedge.netIN CNAMEbg.apr-52dd2-0503.edgecastdns.netbg.apr-52dd2-0503.edgecastdns.netIN CNAMEhlb.apr-52dd2-0.edgecastdns.nethlb.apr-52dd2-0.edgecastdns.netIN CNAMEcs11.wpc.v0cdn.netcs11.wpc.v0cdn.netIN A93.184.221.240
-
Remote address:8.8.8.8:53Requestocsp.digicert.comIN AResponseocsp.digicert.comIN CNAMEocsp.edge.digicert.comocsp.edge.digicert.comIN CNAMEfp2e7a.wpc.2be4.phicdn.netfp2e7a.wpc.2be4.phicdn.netIN CNAMEfp2e7a.wpc.phicdn.netfp2e7a.wpc.phicdn.netIN A192.229.221.95
-
Remote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTRResponse8.8.8.8.in-addr.arpaIN PTRdnsgoogle
-
Remote address:8.8.8.8:53Requestr.bing.comIN AResponser.bing.comIN CNAMEp-static.bing.trafficmanager.netp-static.bing.trafficmanager.netIN CNAMEr.bing.com.edgekey.netr.bing.com.edgekey.netIN CNAMEe86303.dscx.akamaiedge.nete86303.dscx.akamaiedge.netIN A23.62.61.113e86303.dscx.akamaiedge.netIN A23.62.61.185e86303.dscx.akamaiedge.netIN A23.62.61.171e86303.dscx.akamaiedge.netIN A23.62.61.160e86303.dscx.akamaiedge.netIN A23.62.61.75e86303.dscx.akamaiedge.netIN A23.62.61.99e86303.dscx.akamaiedge.netIN A23.62.61.121e86303.dscx.akamaiedge.netIN A23.62.61.106
-
Remote address:8.8.8.8:53Request64.159.190.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request9.173.189.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request9.173.189.20.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request11.173.189.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requestlogin.live.comIN AResponselogin.live.comIN CNAMElogin.msa.msidentity.comlogin.msa.msidentity.comIN CNAMEwww.tm.lg.prod.aadmsa.trafficmanager.netwww.tm.lg.prod.aadmsa.trafficmanager.netIN CNAMEprdv4a.aadg.msidentity.comprdv4a.aadg.msidentity.comIN CNAMEwww.tm.v4.a.prd.aadg.trafficmanager.netwww.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.159.64www.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.159.71www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.31.71www.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.159.73www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.31.73www.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.159.23www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.31.69www.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.159.2
-
Remote address:8.8.8.8:53Requestself.events.data.microsoft.comIN AResponseself.events.data.microsoft.comIN CNAMEself-events-data.trafficmanager.netself-events-data.trafficmanager.netIN CNAMEonedscolprdwus08.westus.cloudapp.azure.comonedscolprdwus08.westus.cloudapp.azure.comIN A20.189.173.9
-
Remote address:8.8.8.8:53Requestarc.msn.comIN AResponsearc.msn.comIN CNAMEarc.trafficmanager.netarc.trafficmanager.netIN CNAMEiris-de-prod-azsc-v2-weu-b.westeurope.cloudapp.azure.comiris-de-prod-azsc-v2-weu-b.westeurope.cloudapp.azure.comIN A20.31.169.57
-
Remote address:8.8.8.8:53Request57.169.31.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requesttse1.mm.bing.netIN AResponsetse1.mm.bing.netIN CNAMEmm-mm.bing.net.trafficmanager.netmm-mm.bing.net.trafficmanager.netIN CNAMEdual-a-0001.a-msedge.netdual-a-0001.a-msedge.netIN A204.79.197.200dual-a-0001.a-msedge.netIN A13.107.21.200
-
Remote address:8.8.8.8:53Request205.47.74.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request54.120.234.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requestris.api.iris.microsoft.comIN AResponseris.api.iris.microsoft.comIN CNAMEris-prod.trafficmanager.netris-prod.trafficmanager.netIN CNAMEasf-ris-prod-neu-azsc.northeurope.cloudapp.azure.comasf-ris-prod-neu-azsc.northeurope.cloudapp.azure.comIN A20.234.120.54
-
Remote address:8.8.8.8:53Request240.221.184.93.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request113.61.62.23.in-addr.arpaIN PTRResponse113.61.62.23.in-addr.arpaIN PTRa23-62-61-113deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Requestnexusrules.officeapps.live.comIN AResponsenexusrules.officeapps.live.comIN CNAMEprod.nexusrules.live.com.akadns.netprod.nexusrules.live.com.akadns.netIN A52.111.229.43
-
Remote address:8.8.8.8:53Requestlogin.live.comIN AResponselogin.live.comIN CNAMElogin.msa.msidentity.comlogin.msa.msidentity.comIN CNAMEwww.tm.lg.prod.aadmsa.trafficmanager.netwww.tm.lg.prod.aadmsa.trafficmanager.netIN CNAMEprdv4a.aadg.msidentity.comprdv4a.aadg.msidentity.comIN CNAMEwww.tm.v4.a.prd.aadg.trafficmanager.netwww.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.32.134www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.32.136www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.32.140www.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.160.22www.tm.v4.a.prd.aadg.trafficmanager.netIN A20.190.160.14www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.32.72www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.32.133www.tm.v4.a.prd.aadg.trafficmanager.netIN A40.126.32.138
-
Remote address:8.8.8.8:53Request134.32.126.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requestarc.msn.comIN AResponsearc.msn.comIN CNAMEarc.trafficmanager.netarc.trafficmanager.netIN CNAMEiris-de-prod-azsc-v2-frc-b.francecentral.cloudapp.azure.comiris-de-prod-azsc-v2-frc-b.francecentral.cloudapp.azure.comIN A20.74.47.205
-
Remote address:8.8.8.8:53Requestris.api.iris.microsoft.comIN AResponseris.api.iris.microsoft.comIN CNAMEris-prod.trafficmanager.netris-prod.trafficmanager.netIN CNAMEasf-ris-prod-neu-azsc.northeurope.cloudapp.azure.comasf-ris-prod-neu-azsc.northeurope.cloudapp.azure.comIN A20.234.120.54
-
Remote address:8.8.8.8:53Request200.197.79.204.in-addr.arpaIN PTRResponse200.197.79.204.in-addr.arpaIN PTRa-0001a-msedgenet
-
Remote address:8.8.8.8:53Requestarc.msn.comIN AResponsearc.msn.comIN CNAMEarc.trafficmanager.netarc.trafficmanager.netIN CNAMEiris-de-prod-azsc-v2-frc.francecentral.cloudapp.azure.comiris-de-prod-azsc-v2-frc.francecentral.cloudapp.azure.comIN A20.199.58.43
-
Remote address:8.8.8.8:53Request43.58.199.20.in-addr.arpaIN PTRResponse
-
GEThttps://tse1.mm.bing.net/th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90Remote address:204.79.197.200:443RequestGET /th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.22000
ResponseHTTP/2.0 200
content-length: 659775
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A8A3918033EB421483A96EC82EF78299 Ref B: LON04EDGE1008 Ref C: 2024-05-27T13:18:40Z
date: Mon, 27 May 2024 13:18:39 GMT
-
GEThttps://tse1.mm.bing.net/th?id=OADD2.10239340783938_154JBSOQL12JS43YR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90Remote address:204.79.197.200:443RequestGET /th?id=OADD2.10239340783938_154JBSOQL12JS43YR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.22000
ResponseHTTP/2.0 200
content-length: 627437
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C745F4B093AB4FE688262AC995547FED Ref B: LON04EDGE1008 Ref C: 2024-05-27T13:18:40Z
date: Mon, 27 May 2024 13:18:39 GMT
-
GEThttps://tse1.mm.bing.net/th?id=OADD2.10239360931609_1JAA48IJSET6WWQHH&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90Remote address:204.79.197.200:443RequestGET /th?id=OADD2.10239360931609_1JAA48IJSET6WWQHH&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.22000
ResponseHTTP/2.0 200
content-length: 415458
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 66D66994D2A44F4D87463B16A2EC2A08 Ref B: LON04EDGE1008 Ref C: 2024-05-27T13:18:40Z
date: Mon, 27 May 2024 13:18:39 GMT
-
GEThttps://tse1.mm.bing.net/th?id=OADD2.10239340783939_14IT4JGOWRFC6CMW9&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90Remote address:204.79.197.200:443RequestGET /th?id=OADD2.10239340783939_14IT4JGOWRFC6CMW9&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.22000
ResponseHTTP/2.0 200
content-length: 792794
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E47CFE1F099245FDA37122C6F7416748 Ref B: LON04EDGE1008 Ref C: 2024-05-27T13:18:40Z
date: Mon, 27 May 2024 13:18:39 GMT
-
GEThttps://tse1.mm.bing.net/th?id=OADD2.10239360931611_1SOG5TNNJKE1WH1R0&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90Remote address:204.79.197.200:443RequestGET /th?id=OADD2.10239360931611_1SOG5TNNJKE1WH1R0&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.22000
ResponseHTTP/2.0 200
content-length: 621794
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 13E282A0A87B4B9BB9E6A8418CE0EF5D Ref B: LON04EDGE1008 Ref C: 2024-05-27T13:18:40Z
date: Mon, 27 May 2024 13:18:39 GMT
-
GEThttps://tse1.mm.bing.net/th?id=OADD2.10239360931610_110BPTPDN41GIXK2B&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90Remote address:204.79.197.200:443RequestGET /th?id=OADD2.10239360931610_110BPTPDN41GIXK2B&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.22000
ResponseHTTP/2.0 200
content-length: 430689
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7322D47628B04DF882EA43D4CEA907F8 Ref B: LON04EDGE1008 Ref C: 2024-05-27T13:18:40Z
date: Mon, 27 May 2024 13:18:40 GMT
-
25.7kB 145.1kB 157 147
-
4.8kB 7.6kB 26 16
-
57.6kB 1.5MB 1142 1113
-
1.2kB 5.3kB 17 14
-
1.2kB 5.3kB 17 14
-
1.2kB 5.3kB 17 14
-
1.2kB 5.3kB 17 14
-
1.2kB 5.3kB 17 14
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.4kB 1.1kB 14 11
-
1.3kB 8.1kB 16 13
-
1.3kB 8.1kB 16 14
-
204.79.197.200:443https://tse1.mm.bing.net/th?id=OADD2.10239360931610_110BPTPDN41GIXK2B&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90tls, http2125.3kB 3.7MB 2666 2658
HTTP Request
GET https://tse1.mm.bing.net/th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90HTTP Request
GET https://tse1.mm.bing.net/th?id=OADD2.10239340783938_154JBSOQL12JS43YR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90HTTP Request
GET https://tse1.mm.bing.net/th?id=OADD2.10239360931609_1JAA48IJSET6WWQHH&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90HTTP Request
GET https://tse1.mm.bing.net/th?id=OADD2.10239340783939_14IT4JGOWRFC6CMW9&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90HTTP Request
GET https://tse1.mm.bing.net/th?id=OADD2.10239360931611_1SOG5TNNJKE1WH1R0&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90HTTP Response
200HTTP Response
200HTTP Response
200HTTP Response
200HTTP Response
200HTTP Request
GET https://tse1.mm.bing.net/th?id=OADD2.10239360931610_110BPTPDN41GIXK2B&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90HTTP Response
200 -
1.3kB 8.1kB 16 14
-
1.3kB 8.1kB 16 14
-
545 B 1.4kB 8 7
DNS Request
browser.pipe.aria.microsoft.com
DNS Response
20.189.173.11
DNS Request
ctldl.windowsupdate.com
DNS Response
93.184.221.240
DNS Request
ocsp.digicert.com
DNS Response
192.229.221.95
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
r.bing.com
DNS Response
23.62.61.11323.62.61.18523.62.61.17123.62.61.16023.62.61.7523.62.61.9923.62.61.12123.62.61.106
DNS Request
64.159.190.20.in-addr.arpa
DNS Request
9.173.189.20.in-addr.arpa
DNS Request
9.173.189.20.in-addr.arpa
-
613 B 1.7kB 9 9
DNS Request
11.173.189.20.in-addr.arpa
DNS Request
login.live.com
DNS Response
20.190.159.6420.190.159.7140.126.31.7120.190.159.7340.126.31.7320.190.159.2340.126.31.6920.190.159.2
DNS Request
self.events.data.microsoft.com
DNS Response
20.189.173.9
DNS Request
arc.msn.com
DNS Response
20.31.169.57
DNS Request
57.169.31.20.in-addr.arpa
DNS Request
tse1.mm.bing.net
DNS Response
204.79.197.20013.107.21.200
DNS Request
205.47.74.20.in-addr.arpa
DNS Request
54.120.234.20.in-addr.arpa
DNS Request
ris.api.iris.microsoft.com
DNS Response
20.234.120.54
-
682 B 1.7kB 10 10
DNS Request
240.221.184.93.in-addr.arpa
DNS Request
113.61.62.23.in-addr.arpa
DNS Request
nexusrules.officeapps.live.com
DNS Response
52.111.229.43
DNS Request
login.live.com
DNS Response
40.126.32.13440.126.32.13640.126.32.14020.190.160.2220.190.160.1440.126.32.7240.126.32.13340.126.32.138
DNS Request
134.32.126.40.in-addr.arpa
DNS Request
arc.msn.com
DNS Response
20.74.47.205
DNS Request
ris.api.iris.microsoft.com
DNS Response
20.234.120.54
DNS Request
200.197.79.204.in-addr.arpa
DNS Request
arc.msn.com
DNS Response
20.199.58.43
DNS Request
43.58.199.20.in-addr.arpa