Malware Analysis Report

2025-04-14 02:53

Sample ID 240603-jtq7kshh22
Target 9107cd9d2ec6af58dcb86c2413963b12_JaffaCakes118
SHA256 ddb9feea5c6a03e47946808f7bd7ef243ad3704d2659b24f8ef51191eaadac59
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

ddb9feea5c6a03e47946808f7bd7ef243ad3704d2659b24f8ef51191eaadac59

Threat Level: No (potentially) malicious behavior was detected

The file 9107cd9d2ec6af58dcb86c2413963b12_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

Modifies Internet Explorer settings

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-03 07:57

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-03 07:57

Reported

2024-06-03 08:00

Platform

win7-20240215-en

Max time kernel

121s

Max time network

129s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9107cd9d2ec6af58dcb86c2413963b12_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\NumberOfSubdomains = "1" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "15318" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "15213" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10612" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8135" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "15301" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "15213" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "282" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "400" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "15301" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "288" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "9799" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "19920" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "282" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8047" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "23166" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8152" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8047" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8047" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "15318" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000256a3d4cf9caa54aa8a407add4322b5e00000000020000000000106600000001000020000000f836a123d67ee3ebe2125e19108f66ae8515099a8c85c1096d13402b1b1375a6000000000e8000000002000020000000d5313266dc5ec53d09e8d55defbde1ded41df7eeeec566f464e24e1f3ea750e52000000048721bdef546281acf711fd34d23cd99c155ec077663b35455accd68de7ad34a40000000a1e9df9616c068cf1e62598bfdf5dd810049cd3eccd4e71cea3a46bb19f38f56ca54e51bd653baf7257bd9d9d925f48844b25b50867a301db1b442ded8d396cf C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IETld\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8129" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "400" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "19920" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8129" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "15295" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9805" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8135" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "23166" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "15301" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9799" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8152" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = a039eef68bb5da01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files\Internet Explorer\iexplore.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9107cd9d2ec6af58dcb86c2413963b12_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1772 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 142.250.187.202:80 fonts.googleapis.com tcp
GB 142.250.187.202:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:80 www.facebook.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 fe0.google.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp

Files

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 eb075d45b302415ad97fcac7ec2b5179
SHA1 b4f09c929c255537d78afd105f1b730288c11d56
SHA256 a12d8c9a0eaf7830722f56dd068259cbeca31474d14fdf5d87b153499726df66
SHA512 977a3a8b6c324df6ad809be1a971cf0a9913df95ba181fadf080a071ed5e2f70ca5c211c656f7d78d2fbddcc7f7f0de8261db2e50e7b0466b42288a46a4c40fd

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 2a267c8371f84045236028d9d98b0988
SHA1 689e34bfc1f5b0d068c4ee62baca3e32f2a8e2f8
SHA256 3e6148f5d2f700962e4ca856d369cf61329d27095aab4081997a69c337194f4a
SHA512 7da74e5c2144e31887d70c62f623a0271b33153f0be825828f006ecec9fcb7d1f006249171b2b6746953cec27ce3ef159f980919e2b7ac996ae64d2519938e5c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 0e048c0ee50a6e98a3649ebece8a16e0
SHA1 6524e6e068af8b3a7ae6231ebfc7194d25a108e4
SHA256 b47046a954ae1f8d8d076adc71c696dde6d4010a912098f50004068bda02b02c
SHA512 88c41af608bc938ec075d92d59489a7ac2cecb8f34daa953eec350cc7246857a8de7fc4f54c9048d16fc3240fb5ebbaea8d6c05dc19cedf08f1e6c8e2a6dd5b6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

MD5 49aebf8cbd62d92ac215b2923fb1b9f5
SHA1 1723be06719828dda65ad804298d0431f6aff976
SHA256 b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512 bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 ac89a852c2aaa3d389b2d2dd312ad367
SHA1 8f421dd6493c61dbda6b839e2debb7b50a20c930
SHA256 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45
SHA512 c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E87CE99F124623F95572A696C80EFCAF_DBD1FAADD656881B5EBDBC1DB3D60301

MD5 fea6b49177c759f61b820b7982179271
SHA1 7eb5ab246864a71359555a6b2744eecbcd0bcd49
SHA256 70334cb00ff8b4cb3f78e7bfc526bb3cdc82340aeacdec8406e951669186f359
SHA512 2b77e264c43f9a45a1e8a8efc60dfc956c6556cd20ab9416c5a4ad2e0518fdcd644391037cb3cedb0df5ba0898f8d60342884c359da9bda51fc9912b195a371f

C:\Users\Admin\AppData\Local\Temp\TarE5F3.tmp

MD5 4ea6026cf93ec6338144661bf1202cd1
SHA1 a1dec9044f750ad887935a01430bf49322fbdcb7
SHA256 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA512 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E87CE99F124623F95572A696C80EFCAF_DBD1FAADD656881B5EBDBC1DB3D60301

MD5 9dd79a6f651a37175d67de52b60cbb53
SHA1 0088a4294701ff338b889456cfca02306b5548bd
SHA256 bcda40ba3fb7bab5600937e5be5bb9312091b656982d564e4022a9e9a4088d6f
SHA512 0024cceb17665b8c0bd31632432c1a00d772ec5752c7c3c8e62b2d4c5ff2e7b0e11666c5b14cd45c14055cd3e30b0b583ddb1dfa0b1736767b7e8ba7850be830

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\www-embed-player[1].js

MD5 d2056f8d081fbfffcab81d61ea45b151
SHA1 710243082f40626f64943ad3b656400f444d7130
SHA256 49fa9b168cc8bbc037cf4498e31c355509e9b438b0d19fcf750b1c5fbd1efcaa
SHA512 530ca2c291c44d3d2b5869b0ae661ac047748a5cab50de280a2c8dbd26b52cdd71a906b3730e8a849debece542eb919462a8407ef2410acf28c57d2b6068cc14

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\base[1].js

MD5 9178a954abcce420219864651c7787b2
SHA1 f874d3e998441ba6439cfd7e89514facde08cff4
SHA256 40cc1692dd4d8e1c8ed29593ee222240494b872b734c0e31da4628014da7346d
SHA512 927bf88499cdd64ce32f3780a0cfa88b14fdfbeac6a237454dcc43ee5d56b04754a40dbcba402519637ba1a3b0f948a597260a74ddb0b316698a41559d8e1cd3

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff

MD5 de8b7431b74642e830af4d4f4b513ec9
SHA1 f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
SHA256 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
SHA512 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\KFOmCnqEu92Fr1Mu4mxM[1].woff

MD5 bafb105baeb22d965c70fe52ba6b49d9
SHA1 934014cc9bbe5883542be756b3146c05844b254f
SHA256 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
SHA512 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 7085e598c15a9aeca1a5a02fad4812e1
SHA1 046e21d2658bf8f69aefeff84fddc0fd7256811c
SHA256 b2a728f747283f42a30342b509508a32814f5bd5e50ad241ff7c15f6c2acc41c
SHA512 74830ca92d659b15abd9d817e2fe79ea21ba53fdf0b6137f9f46928914581d9c923299ea49313443653bb977c7ccefe4f22c274f93609b2241350d827ea479ff

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\ad_status[1].js

MD5 1fa71744db23d0f8df9cce6719defcb7
SHA1 e4be9b7136697942a036f97cf26ebaf703ad2067
SHA256 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
SHA512 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 a63ac3774bface111a47d53118fdc875
SHA1 21ce3e4cb0e327fec3b407550fdf93730eab140f
SHA256 c48b75142b95f89ef6ddca160c51bad0a83f346890ec6ef3276608505043aa8a
SHA512 64802352ce75cf158696f6e96b72f02a6fa7ee58505d3bfb0f7733708afcc84346086568cd69a0428cee5bebe000f7fc7aed5ae3b9f6d19f3131c0d1b109264a

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\embed[2].js

MD5 322e970509e24ab233b6c326a9339623
SHA1 10e2ea809ae638d5f32385d05c569922ab19bc17
SHA256 99cbd012a57f19a3fc1b412866ba13d6b9de2a5bb22449dcbf14ec0a88937000
SHA512 8f8bdc9418feed04e6fc7415e9e57f0934a6b136b1a763e0e39f67efa47e004a8c3385105a1c1dd9fa48ada83ac5a2a93940f20a99d6d16722ae903c93d9817c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 b0fa7bde9ef1721d61b694b0095bf85f
SHA1 ab1977beb6a2a5873878cdb89ff4da8c374c3ac4
SHA256 09675527d0bd5c588f04244a7a0ede05092a61041e8c8195d7f503288290188f
SHA512 f2076d63c2fc4faf7a7b897e69fa93a0dc4f557023440eac048cad6918749e953c31e68e7f2f1a32d2779a65e77ccc1138b2fb48d04e93ac6bc929e62318d038

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 91e8d314daaaede3b3c85f5573a8a716
SHA1 7df52e49501ba4d975ae762872a45cf0e9006c76
SHA256 3e1ab987bbeddbe9c233cefd10e00260eb95b3684d1b3f5b12429875b5738cca
SHA512 0450f025b7737e1c67314df3f1ad24e8133bed0d685b8e25a09af401507008f1ba56adc4e9277c25c999a59c3d369a651a214c5f9546d49516840a45b7173fa6

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\FuC5FHNNqx6hIMPHBLFutNLSO6Lu9zn3BZWWVNvRnX0[1].js

MD5 362511387771cc02e5d769462fbbd6cf
SHA1 70a77448643daa84347b0eb76ba64ab54a5648d8
SHA256 16e0b914734dab1ea120c3c704b16eb4d2d23ba2eef739f705959654dbd19d7d
SHA512 94874f96004e9bbce4b9c32c8941764a60e138614c348923869dc294601ff6c5026999660a3877708242df7f286c744ff7c6ab37c3e9f759d6fa95e52e29fa55

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 0b39860433329aa4c3c1e7525483f111
SHA1 575b81e6e6cc748f85f048f3b3ffa5917aea2f50
SHA256 cb88e9ad5971567df8978dbafe0d6a3f6c2ef4daa9ed76792a864073ac1a2992
SHA512 391cc40170ef101b212f76e82e39e14027ca537d02f41a0ebe43e972ef738683c7a8692c35d61307d205c22d2d93339f53e018ba1fa75a0883e436c138bdb3b8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 ae12abd4a650a26b6d00e101abf88a8d
SHA1 aaf61e1bf8e2f41cc545209b9c4d3f89062c903d
SHA256 8ecf47047bb82ac599067f88e366e436e37227dabd398a1a42eabf3af50b1ce1
SHA512 44f5b74a79fa9e0364bfb013ff37d4b756b1bd44b7dd07defbbf1be3f99b5f2cfeba774263941129f0fcf40cb7ffb464305ebf7931c7b621355ca4edabeced9f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 2e5002025317866e62b7dad3af257221
SHA1 6d6a29604c9d8d7ada18997711f89c0d611a269f
SHA256 7fb6573715b51406d559da4f7330bbcdb4d6c7e78afd03e10edd53c181c20c63
SHA512 67066382c1bd20249d4e5b6ee1fa8289126ffcbecd22c3cdc8a5cc11c61f6249dc0f19eaca0ad4bb9f4810c1f5c838fb6ea3b0fa673cbf7b7ef830a961ea35d1

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\remote[1].js

MD5 9a260ebfcd9283c905736047a6710016
SHA1 abf83fabe75adada9ac80f1ea7478541a7af32ae
SHA256 2bb23e82fc1dd04738a92658823f00ba143cade8c16ab948bf7778fa2707e352
SHA512 ea0664517a12754450d940f5dab26e14cd3b6e30219b65354465f13faf59649b709131836c660096244e3188f425de428ef53c1d21bccffcdb707f39479304d3

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 6589277721eae4f5353894a7e9aa5392
SHA1 fd81dea613464d7b5356fb682b40f7aeac9b33e4
SHA256 ac4ed14539b11aeadfad8c398d96e57a66e837cd5f9ef9b9f85b9e3d4090dd16
SHA512 fbff0e204952e7379ef5fac8fe45b35cb4d30fc913e47e53fd21bf6080035080170c757b56b00b285b813be12a61c2f6b618789c8a6d87510a262ae7b7bf49e4

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 aec8da10c5f14187373c9022ba5a720a
SHA1 97b7c6080f011996d2486e30b483fcd51e2a7981
SHA256 182746dd20dbbb6e3f8be77b950c3f9e7f2cb0e172baebe3513d8d077efd2476
SHA512 0343b998cc91b81052b7b6a53c111146a2f4ce4d072f21ac1b8b8784ebe13b4cdbd9d928a1008121ba354780e9e7318436ad1805abfb49c903c5d93cf0c1c1e8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 ef5080cf3fe35fb5c631240362ba1231
SHA1 1a9b046fadf6d9cb9040d6308307ceebcedbc230
SHA256 b62535332a4706b7377cd072dc3c4d29362c9b8937ad8ef51f2d3cff26be4249
SHA512 475bcb894c30ae4c19d52aba149d8c2d3c5b114165177c759bd011e655b64b685e53d20becb068f85d5f3748c6770ff3be9ba09f2a00e249ef9c51f53f09cf5e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 7fdf8ed4fc8722471956d9c8522e16d5
SHA1 0f521c7683860d4acc3eed60d2e5a08e84b7f33c
SHA256 deedbf592cd82ff4108fe861667a20fd214fd249cb0223d8ea6015a6fd00e4dc
SHA512 223e808441b11c956548e9b766267d152d014eb1132d728f717813d2be22203e3d48ec44e196cb39990dac5268f7182f0ba3d85e0980d8e226fc5ab4f3cc593c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 ef5b696a300c08335d885d8eae85bc24
SHA1 09cfbba2f585b5977de8f422389c3c3149e291b9
SHA256 19c6564bf4fd0b9e9dba74adab97b385d8265abc43518b018758d14335e1e367
SHA512 2d89af06040ca295adc28cd100a3dcad8082c31b5ec8ff448293b3ed2c282042ea2eb5a08ce0b160c38b4561bea0b13a4b03fb56dca0843615b1aa3fd5aff326

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 31409f194ab85f25b4787902a103294c
SHA1 6c0fe8c01c4d7dc2916d41a3d4dff41ad1bf5b03
SHA256 b19d5dbac74d718526c9add48423fd13b1af31b6937d92ff72bc70c247d5ab09
SHA512 351ea1469750446db115c567fcb4a12b2ed699610e8b54ce6e075e385fc112291f0116e1dab8d1072732e860cdea981e917a43662d612b97c7bce41a0e99c804

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 f1f29d8e08b813f8823d0784c071a15e
SHA1 1b91b5cdcc1fecb640fcf813456a3300d80a8d0d
SHA256 b5a1e16b3c1ce7b2ecfce6f1704e90268e9c758446874243e13e31838b7cef75
SHA512 1c6189dc277fefebb689bea2e322dd93df60b42d38c3746e2b6e6faee656c953a87c3c5f6a63228f2182a2fefaf3984e339166c56181250449d410bbc101c5b7

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 d313cfe6b3b194cd982cf73d5b4e5ff9
SHA1 6321ccde471e2830a5f7af9da9dda7a75509d1d4
SHA256 de06da4f62b42c3e15ea973ea21ccd7535878d8378fc73178a26baf6e2c52575
SHA512 9adac076ad718fc3324848d97c5e2bccf2cbf1e9a69623103e49af938cc46b92ce1304d2d624b399fcf43f3818b45e48aa7eaf1d8cda809d5594d1f0ae8d8889

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 dbc3f040d78666ae924f0dc8a498d7b6
SHA1 804b2bba7b716db8b9dd3173fc450537c2e98b99
SHA256 0b8b539cf61535e5c9dd294a07e8d5df5eb7441f515680a132d139cdb3eea01b
SHA512 c4fdb4a86a182e84ff434db2d102b676b161aa978342d604f641466c0634b8463f6e8bcbb38f557b021ca6fc50a1e8a2190b475c0182183fdf048b60553e46c8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 73e49e779373a14f73d524d36622c057
SHA1 641387b74db139fccf6bdabf8ca5a935006c3ee3
SHA256 404a6f2c4dd97a09b84c89cbef29eab67b5835af55f8ba51c1d1e611c5f8020c
SHA512 a4b72044cf7c9196ed568688ecc06b05154c20d859e94aaf2a1881c3c199763ed96e250af8b6847ec08637621b352c28faba5d427412da14cc59a543b3ebd20c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 1e1853072839bd899238e98fb7f48f24
SHA1 9a12dbca0c73b19664275d52059c91cf864eaa3f
SHA256 6119d01512fb940987b22ec0e21d9251d44052568972756c80801dbeb5d0bf53
SHA512 ebfc63685c9868e111d5c0b529aa8822f4047dabeb1c5c70894c055d4ecafc5a44ad13bfc5e75b23ca4d13e5e58ad4da469ad57d3df36d5562696caa796a11c5

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 3f7d8eec7614e42a73faf6b0086b8f6f
SHA1 7c4ac31a410f0e858357dea93e1c29082a2c62c9
SHA256 b6778dd019fb425b7d2726e67b3e083a5d7613586fd7da1576f1a6f126167257
SHA512 df973377c2709de2948cddfe38e16b0c2dc615c62127c5aeb6a7cba56e4412ef47f0123b264114011dc537a6228644227fb15260d09c3b1c5dee6dba5f14672a

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 4244617bea3f59fe7c2099259b8afbe3
SHA1 112947e568ade35c03d6e33ec24acc52d987d0b5
SHA256 ebaae43b27e3a0f34295913b1bf534da8c61a43cd754930f236e64b635fb5c4b
SHA512 e7f3758c8efdf29a99653472d7cc594867c8c09b4d02d28a3238088015392ca5e83fa7aabed7f107bcbbbbcbefcd8f36ec565a5eafd698c180a3e89e87757fd7

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 30e39d496989013bf6698bb1922fb012
SHA1 e4f766bdda97fd04b957d14634178207c99b710f
SHA256 306c9c73fefbf699dd4b7c4eb9cf4555ed704aa67e182d98b525ae22709ea8f4
SHA512 1208a77f6202027d4c5ce0aa82a1ac7a822c8a255a96171d49146a27c3d1021fcb2a7f830b2efbc5bf06f011d7dac43a82f4c4948785d99d4b39b62d27c730e5

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 99d393759340f1d244ea89e2286f0fdd
SHA1 3417c2a01bfffd7328d2ad2fb2433735e7f237ed
SHA256 753f6d78abab7235d8e65d67bff494294708cd3cbdb7fe6251cb7f27c2f3f77f
SHA512 1efaa36783e985c035c75ca322222131beb2495a4fc969ce0e65ca8b58b997f871c0b0038d37fdbe1787c972b21e503c66df53c0cbe9d3f32b5b9281552d1650

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e4e32b89707608e8ebcb1f28abcb6714
SHA1 941a1874036748b74ccd934d0b0a3aaa2bdab9f9
SHA256 757b32eadb09fbd94f86220eca608797f30ff90bfb36fdf206b3dad667eb05b3
SHA512 360257d9180639b9acda3259745533d13f7f3d6ffe66e97f7aec30d7dac74f45601dea845e41724fbfdcb6d45c6542c324134c47384de58ad0c7b7abd61cafbd

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ea7e3848fc99f45749da3f12e941fb73
SHA1 7d7aea8d4cfee823450581eff7dd51a79054c201
SHA256 e5933330685e62b344dd0316848be99ad571efe897a0daf7be298a31d0d4a5c4
SHA512 23e60199cc814afc74f40d41db85289ae9b4d4e7876c50b06786c3198cbc1efb34562d6a58fb9f423f9cb539e09711e695e3acb45a0e7d32a15ab1db84321241

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0415ed53da3c6d10a6beb7390663bcdf
SHA1 4a4cf1d0cd497ed33d22cbed354e29c8b3e78c1f
SHA256 69218f6401e84648ca2c47e8400e9525452974e12c5f798ba0dd45e94b0b1a39
SHA512 ae5a11c5d1cfb66ab34427ada7e4e286d9dcbbe49a7878205c5f873efea27828ef3f300f664120eaa85c775e3ab8d13b2568f416633b87be0791da95f7ac9b04

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c2e8059127bd4e2dbba9d4a3e0fe17d8
SHA1 c8072f9afec292f4cfee7017b9732f53e6d8d558
SHA256 c7bbde8a5c3ac4bb6cc3962d3da72fa8e48338531a9be972b5e8e3eef2dc6b8c
SHA512 2eaaaf8173e3544d17073c8d6fe15453aa9985fefb4dc3beaefad972d1876a8fd6cbab94dfcff9201ad6db13beede8953d412557f2dea2d944b5a7dee243400d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 1fdd5ad9e0bcb294cef557be6216768a
SHA1 8cd6f22973c08b4b4d5390b8e1962ac11e44f181
SHA256 fe3159ffc9960d563771a8fb4c885affa30d3495a50914a9283dcaf54824d34a
SHA512 46a815287dff201722e29e9119042906fa4ff5639d27b558372e340cc89e8a07646ca25863fa3544e7378f994d68508d62f29fc0c5c0373e0ab1f759dc9d7316

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 1bac913b1c8f9c60be18aa37d7352d30
SHA1 c11a5f8702f66b8b18010a711121413bb477837c
SHA256 6e7b99ca9afdd00d66e20c39b3a986c2c0fa77ea586cd3632090a4fe37260b3a
SHA512 1527c39a62894ddb32668c1ef2b6bfb7bb361768c2c60c5bc713d3dc8f13499b0d8f382f0d28810884606b3f63890a8565b6ddc17b2e032b961c60f335f53cae

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 be94bc83a556c62deff9e9c5169a9a0c
SHA1 bcb8c6255aba82c638001f6da5a6315694a0b2d4
SHA256 f206120468db0f486d247e8e0dacd89370a9b374f8186ad169cabd8c1823d9c7
SHA512 0cfad98e444e4ed0fdd2c29ef3d0aafbef2c0df092ee1801a053ee01f79c047a004ee6b1663b7cc0785152b11f69aef71c2057478e316d8e3810e5d69d3d8e3f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 766c7fc2602747086c30e7930920998b
SHA1 22e22bd1fe9fab010179e0c236623088f19ecbd1
SHA256 c2a83c7f9b7eb7bf01dca4ffa947f34c9c15c5984d8c5b10e11321cdd4e2ebeb
SHA512 ecd05da2ac7f55ee5c3579dbd3666f64509a4ffff1aa9197d4da3c7b4d18efd5b4d6cf3112c28fcf38f474191916462565ce5e39fcd39bae111ca984dabedb2b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4df69732ccd1ef3229605e81e7d98ea0
SHA1 886a685fc73a3c7e59e59dc77a7428e5ea768b40
SHA256 0e8916de6f3e524adae2ffb3b451eaf3e5edbdc23159680659a88b5d2a5b2eca
SHA512 f6299a9d52de0ccdcb6aba8035545347faec5601073b009a9d1db1c750aafe7149a654149d8dee924743eefeccbbcb63953422ed6ba82258ec87521149bb01c7

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 5d402704d26283b6205533436fcf1379
SHA1 3217666165b26e99a60aaaba10835b791f8b2358
SHA256 1093aa301529b2853ed4e5cc8c15dcfdcb88ae5ccf16b4980770372d6ded84df
SHA512 634db9986f91e5b7f243f3f3bdcb4066af5da886088d7465eca92d6a56fbc2f0d7677acd44fbfa59d4d714ac28571a4426eb0cd5890911ad9bb63bce713444aa

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 0c7e1191c5121bb051636343f89a1db8
SHA1 211957894e3084217e00e3481a4980703c398fc7
SHA256 4a23724477f413dc62580734889ae2c5649f9f0f3b64613888a596cd411666a4
SHA512 b9c20f4fb5c189e630c69f2fa4d210669f447021615381a0654715f70b47a53c0b4ea0ca164649dec8f4e420266a44b4c33bf0f368de6a62f9999ad1dc698adb

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 c5eef803acd010f6898077c087527127
SHA1 5036defb2193b6d32603c951d3fd2d52155a1a68
SHA256 86f980101dd569d2897c7dc8b5e4389b7f31c9bba685571bac3e42099f574835
SHA512 cbd602d64ad05076176ad3335cfcaaeba3bd82d61c9cae43a12b84eeb2db831f1bc4fe3b092816946e0c2356262f1ab8dc2445d5bd0b2891cd42e538a17e73b9

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 24e3bfeff911deb2235d85d09a1ea494
SHA1 929827c3ed6427a74db80c9ab222a23adcbc5e8e
SHA256 84b74efa57379a4309298b243d30e4b99d683a2aa1a39cb650560994340efaf6
SHA512 5a1cce06cf098385b47af37d22e8dc79c500335a581b2178034b815e802b122a7322d0d95e6a109c949282a01ead3b2b963c9674b59fab9c0eda149960b0cfb9

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 caedf27bffc48ab8784d411dc075354c
SHA1 c5342215edacf1c7493546e8393c7daa38c6ac1b
SHA256 6e2c069cec6cb5ad68229bc23cf66468044820afe2e6dbc76e46b3ee64641f77
SHA512 76e68c2abb3ea02ca5ecdce6b660cee41f9551834fbd6b92e7d57b8c50eef83517a32e3e328bf06b69803dc7429bc120ddc3977ed6aca57149f99776a1624c58

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4ab5b676dfc0d07df9a1bb09e7fe1bc0
SHA1 33e33ee97ec5bf57fa8ffdadf43b1da55f7e9da8
SHA256 26649c0d6b47ae0a9234a6429b1f73e259e37277d8d38ddd59e87ed4e30bff31
SHA512 d1674af123f2088d63a36bef7355e984e932379ed0a4d569602583268255fc049cac161c4689fe30788ae1ed40ee1daf382429e5f47f3c7581dca8687b9a90f3

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 729e1bc6ed887c88eb0b1f28f300b553
SHA1 c320c4a8a14f21e5f0f9a93c824d86e4b28d03a1
SHA256 e7759d6cfdf33e6c14b8815bc14aaa761f1d8da6961557a16c9c1ba60700814d
SHA512 bf6512aac6e812bcb4bd48f95e1eec09b9eb315f6584fc2bab40e88505d5f08953ecdae24a962e1cc9b9270a6d2eea4b2350e46ecbabde02aa5c1737f1de2f42

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 83b6ea9b0ab0227c64358995a346ede9
SHA1 51e204ffa43b71aa93e449297c16b49172d90ac7
SHA256 004ae960e45cf97ccfa9269b7fdb87c2ae1df881d7b0f7a63171234c577a3fe9
SHA512 b845583279e63310aff8868077c8581680121d6c99038b289ec74401178fa9cb9eeeb00fe9f4a549d1e025e61c21829fdcfa67b06498348da0047449228e5d8f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 11001cb6776af68e4de3b76d409345b7
SHA1 da3857ede9108ed3aaaf10f3b91539ebc2dc0648
SHA256 c456c070630ac17ef9da4d431eaf1a1ade184f1ec2f1cc04367b0059e41caf50
SHA512 924f4ae33c012bc1e6ac8489611552d4e81f390c8fbdedc5b11006ab7076f25cbf2c137ad3bc059bc7b3fae3271eb38afdac4167b61209ad835e0218667cd236

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 bcaa5fdc2627199c5ce3769009432a47
SHA1 f4001296a42bb3fcdcbbf4634fcc891d7456f933
SHA256 ac5af85baa117fd828ccb76110a15cb9344bc32824f6722e388a14b25436a574
SHA512 83b6660805df75a9e9dd4c1e7a23e6fac24a469e042adb2d7503000a1f43651f142635ce1ea213e589fa4b2e9704a85a07ffa575c0665c77af21a683701cdb80

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 10c3ffc2e7417b61e5b6853a877e876e
SHA1 aa1f6afaf035fe5fa8abc85b066275aef46a235b
SHA256 944296ce12a82624278ddd5cba19d7513bbe4e7bafcb1107b5e5c06db7e0616d
SHA512 379b341440d1435496f48fbc6e3b752fb78453f514a6d22545a6bba52f6277d1a693d05af99495f99a964310013f6545213b8ee346c9734f98f377d3ab3e8000

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ff3ac420a168f258a2cd73f018efeabd
SHA1 79487cacd2312fe1feb763ee9e3324f9c9d6cdeb
SHA256 3cf2ffbfcf283ed0a36c881738c45079fd7b95a04799163b204be635db5faa92
SHA512 8057badad7723330102912f595ad828f695aa73375d3321c217be40b93d15ef6ee5e7995efe086bbeb344833022eba3ca3541f40f97b94a9a5203f19a45fc7a2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 eff49a8e49067f0006a79cd2f7233255
SHA1 9e0b6fa92c6d38a1207a9f8d13a20db112b1ee6a
SHA256 f31e8110acf8d6a28404ca4df72e57b33d75dc9be263e44b6ebc0f5d4d0cdec8
SHA512 e34f665d60767c5c8b33c05fae106e3829914f62a2c94c137de69b2f64d2dba28e3c8bfb659c2d917e07f2658ad51914f6c87fa38289d08f5344316d41f7a7bf

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6c2183307c0c3de50ea7cb433815574b
SHA1 0c2740b3494fec4d4f5b80cfba6dadacf0e862e0
SHA256 a848ffe4998aee93f470d5cf120ffea5bb7ec7b9f2c014de1eadc8cb4cfb8c19
SHA512 f7d8f4f3b5ad92d24458bb8a0ef450e956f3cad7830cd4be587fbf13033e06856ac674999e1c378c611174fc035d387b4ffb19e62947047b9d045c85ae37ec12

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8d493c0411c486a594bf2b9cba03cff4
SHA1 57443e32330b4e435a1bf66a4ceae3e98682838c
SHA256 370e6cfdea83c741dbab5600d8eb73b15adb4abc9c0c57936652a4fef8fd42b0
SHA512 15b1e237c5565f149f2b507cc2661d4ac02159db3e19a5b712403f80f2ed0504838c621be159404dc899a2dda26a90d0be8b0a4cf9ae16f573750ac697fbdb68

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\JDR9WITL\www.youtube[1].xml

MD5 58b747da44b4decc784728c1f5609efc
SHA1 d0564452197d122a6cf6de5b6b51d19fad3e0d70
SHA256 3c6802ab03237d8f23fe23c51d7acbf9f0dd864fd7ef8c28f2626847a055266c
SHA512 1c55c930f03b532666918eed82670b14d31bb9ff7b5cd6e932c54d7f859cbd7df3594b41d825f1fe8d9237b72498dfc04a86f65b97834eceb57577b93098ba10

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-03 07:57

Reported

2024-06-03 08:00

Platform

win10v2004-20240226-en

Max time kernel

150s

Max time network

156s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\9107cd9d2ec6af58dcb86c2413963b12_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\9107cd9d2ec6af58dcb86c2413963b12_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4904 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=4068 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4060 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5340 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5756 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=5452 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=1344 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=6148 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6156 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4036 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=6800 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 13.107.6.158:443 business.bing.com tcp
GB 51.11.108.188:443 nav-edge.smartscreen.microsoft.com tcp
GB 142.250.187.202:80 fonts.googleapis.com tcp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 164.189.21.2.in-addr.arpa udp
US 8.8.8.8:53 188.108.11.51.in-addr.arpa udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
GB 104.91.71.133:443 bzib.nelreports.net tcp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
GB 142.250.178.10:443 tcp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
BE 23.55.97.181:443 www.microsoft.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 142.250.200.14:443 www.youtube.com tcp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 133.71.91.104.in-addr.arpa udp
US 8.8.8.8:53 181.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 154.239.44.20.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
GB 142.250.200.14:443 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 203.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 64.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
GB 23.44.234.16:80 tcp
US 8.8.8.8:53 nw-umwatson.events.data.microsoft.com udp
US 20.42.73.29:443 nw-umwatson.events.data.microsoft.com tcp
US 8.8.8.8:53 29.73.42.20.in-addr.arpa udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 216.58.212.246:443 i.ytimg.com tcp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 246.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 216.58.212.226:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 97.17.167.52.in-addr.arpa udp
US 8.8.8.8:53 226.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
GB 172.217.16.234:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 103.169.127.40.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 13.107.253.64:443 tcp
US 8.8.8.8:53 198.187.3.20.in-addr.arpa udp
US 8.8.8.8:53 86.23.85.13.in-addr.arpa udp
NL 23.62.61.155:443 www.bing.com tcp
US 8.8.8.8:53 155.61.62.23.in-addr.arpa udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 0.205.248.87.in-addr.arpa udp
US 8.8.8.8:53 13.227.111.52.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 3.173.189.20.in-addr.arpa udp
GB 216.58.212.226:443 googleads.g.doubleclick.net udp

Files

N/A