Analysis Overview
SHA256
aa4a3f0c7b97e147563297fbf160215a7da07c7d056dbe655b7e59a4dac7a7ff
Threat Level: No (potentially) malicious behavior was detected
The file a1cd83bc5d3f6340f4ffacf21d41ac63_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Modifies Internet Explorer settings
Suspicious use of FindShellTrayWindow
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-12 18:43
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-12 18:43
Reported
2024-06-12 18:46
Platform
win7-20240611-en
Max time kernel
127s
Max time network
129s
Command Line
Signatures
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\InternetRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000000b2968c6cf60b74b94229c882944fb8100000000020000000000106600000001000020000000f01256b9e28fdaeefd959d144bc35768e4e779c0bf5dd2f4b58763765672a670000000000e8000000002000020000000cc0fe212ae736bf014c37737d358d51fad63acf3f63cde25cdf8698282aa5872200000004e4d4b7ce23af5e1605144315e17e2e370cc9b0fb7b1d4cddc4a3dfca04d5f0340000000bff0bda5608969054ab80400d0dd4604b908a90b7bdc5db810032d5ea6e66189fc37a1d77447529c94610153a9be7d79fca5e2053a9350196bd9d611d22919ab | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DomainSuggestion | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\LowRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{ACC6FB91-28EB-11EF-A01D-D62A3499FE36} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\SearchScopes | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\PageSetup | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Zoom | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 8050498bf8bcda01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\IETld\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\IntelliForms | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Toolbar | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "424379682" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of WriteProcessMemory
| Description | Indicator | Process | Target |
| PID 1412 wrote to memory of 2384 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1412 wrote to memory of 2384 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1412 wrote to memory of 2384 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1412 wrote to memory of 2384 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
Processes
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1cd83bc5d3f6340f4ffacf21d41ac63_JaffaCakes118.html
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1412 CREDAT:275457 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | s3.vefire.ru | udp |
| US | 8.8.8.8:53 | vk.com | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | userapi.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| US | 8.8.8.8:53 | cdn.socket.io | udp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| US | 8.8.8.8:53 | p.kinopartnerka.tv | udp |
| US | 8.8.8.8:53 | coinhive.com | udp |
| US | 8.8.8.8:53 | counter.rambler.ru | udp |
| RU | 87.240.132.72:443 | vk.com | tcp |
| GB | 172.217.169.10:443 | ajax.googleapis.com | tcp |
| RU | 87.240.190.64:443 | userapi.com | tcp |
| RU | 87.240.190.64:443 | userapi.com | tcp |
| NL | 192.229.233.25:443 | platform.twitter.com | tcp |
| NL | 192.229.233.25:443 | platform.twitter.com | tcp |
| RU | 87.240.132.72:443 | vk.com | tcp |
| GB | 172.217.169.10:443 | ajax.googleapis.com | tcp |
| RU | 81.19.89.18:443 | counter.rambler.ru | tcp |
| RU | 81.19.89.18:443 | counter.rambler.ru | tcp |
| US | 104.21.57.186:443 | coinhive.com | tcp |
| US | 104.21.57.186:443 | coinhive.com | tcp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| FR | 13.32.145.9:443 | cdn.socket.io | tcp |
| FR | 13.32.145.9:443 | cdn.socket.io | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 81.19.89.18:443 | counter.rambler.ru | tcp |
| RU | 87.240.190.64:443 | userapi.com | tcp |
| RU | 87.240.132.72:443 | vk.com | tcp |
| NL | 192.229.233.25:443 | platform.twitter.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| RU | 213.180.204.90:443 | an.yandex.ru | tcp |
| RU | 213.180.204.90:443 | an.yandex.ru | tcp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| GB | 216.58.201.110:80 | developers.google.com | tcp |
| GB | 216.58.201.110:80 | developers.google.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| GB | 216.58.201.110:443 | developers.google.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| GB | 216.58.213.3:443 | ssl.gstatic.com | tcp |
| GB | 216.58.213.3:443 | ssl.gstatic.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | mg.dt00.net | udp |
| NL | 188.42.92.236:80 | mg.dt00.net | tcp |
| NL | 188.42.92.236:80 | mg.dt00.net | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | jsu.dt00.net | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| GB | 216.58.201.110:443 | developers.google.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | www.planeta-online.tv | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | counter.yadro.ru | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| RU | 88.212.201.204:443 | counter.yadro.ru | tcp |
| RU | 88.212.201.204:443 | counter.yadro.ru | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| RU | 80.93.53.88:443 | www.planeta-online.tv | tcp |
| RU | 80.93.53.88:443 | www.planeta-online.tv | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 80.93.53.88:443 | www.planeta-online.tv | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| GB | 216.58.201.110:443 | developers.google.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
Files
C:\Users\Admin\AppData\Local\Temp\CabFCB.tmp
| MD5 | 2d3dcf90f6c99f47e7593ea250c9e749 |
| SHA1 | 51be82be4a272669983313565b4940d4b1385237 |
| SHA256 | 8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4 |
| SHA512 | 9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5 |
C:\Users\Admin\AppData\Local\Temp\Tar1033.tmp
| MD5 | 7186ad693b8ad9444401bd9bcd2217c2 |
| SHA1 | 5c28ca10a650f6026b0df4737078fa4197f3bac1 |
| SHA256 | 9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed |
| SHA512 | 135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
| MD5 | 383697cefa0365ca5532969bc1c8edd2 |
| SHA1 | 60b08df37f540d6d5cdfbce1f2d44a670a006a20 |
| SHA256 | 0dbec256519e5c4bd54379033427ba884ad3fa2dcab05d9ece6ed918f05904f4 |
| SHA512 | 7763657517ac0c8758c964716c365e669e45e6bb16cba9717bbd0ac9a1717dea3d33fb0093b512a177fd0f3fff9820b41710f1d3f6fdfe5fe78b9028f9568c8e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
| MD5 | 660b6e28b38ebe7e521064e60113fffc |
| SHA1 | f2c25e9f931876bf6834191ec5b409f47f869129 |
| SHA256 | 3e203426c4aa1403e940966905320c612ce4006cc87e03eb64058eaf6d402433 |
| SHA512 | 96868e652d5e0c25b4d0f0ada20d345115f0c6fda26d3cab724c0c1867386d2dcedc408c51f776b7e019ce2e22755017d99bf663cdd9fd0d88b26182c6434bcc |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 3cce6903e45071fd5a35b5061f0318a4 |
| SHA1 | 1632c1722adcf228bbd1de23b6f9b164991e4bf8 |
| SHA256 | f25c1825f903c45ae0267858f8b361a6350158b934b9d3a0e77afa428a85e0f8 |
| SHA512 | f8e5073ad5c5c4340ba566dd4194828460c0d69ddf0bb67ec3e0bb689005438a39e8036c8034bb22f7d32a61b123d280d88c500fc167dde8d1d7c72fb29508c8 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 363fd17a7997200a43365faeca24d261 |
| SHA1 | 1347a0a7bf1d25945913f48a038f3d1f601b774b |
| SHA256 | f173eba65c07704eee4e47f50ec6252b9b0b98cc88c30f45b696cfb1f48f8fb6 |
| SHA512 | d38309cdd32440522409e907a3870bbc2f97fd5daa0ba5e30cab2cd613624255b38f7f96dd0d6bd2e5290e148ae85af9305d86f2329be068d72896692ad9db45 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 73b2c072b873414304258a2ccd94e2eb |
| SHA1 | 2bd7b5a5e07ae29bbd4c79d7cc859848069796b2 |
| SHA256 | f02e34a80a843a5c55f01565d19c5309ddaf8e014896f0f55db2b696f05a6f2f |
| SHA512 | bb35492441284568043219bd70d9529b3abc8b89822261ae163ccee93083f7ee66f5496345554e61c2dade89a3423d0a86d610ce070969b0357dc2a00b86124c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 053aa62af906c78bdfb29bc3028ea16d |
| SHA1 | 87704d765715fd5b72ab342b1c78ff1f068a87fc |
| SHA256 | b80e0748690dfa42e53873620614a87420b3420116bbc7708b5bf9b040e20b36 |
| SHA512 | fb288826a5d2d3fb44918b8927ea5f138e5480157444529c0836d6fe436bb4f7278f61afe28c8c2db9e13591f7e898e82108b400386c85426b53e966392bc7d4 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
| MD5 | 55540a230bdab55187a841cfe1aa1545 |
| SHA1 | 363e4734f757bdeb89868efe94907774a327695e |
| SHA256 | d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb |
| SHA512 | c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 91d1189d3a7894ad343b5dd1019d053b |
| SHA1 | f20bff24bc168aa98e5b09c171503ba0b6278f73 |
| SHA256 | 5d8ed507956a99c493bff3b55a2a9a077747a4436850bbdfafa3848b333efdfd |
| SHA512 | b76fcc80e973bfedf738c120c6854e604cd9d80f165fe134af7502fe2a951b354345b7460f1ee7409c61ee6ed96b167f1ea2e0fa5c7a3140a2775442a54ab570 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | bdaf56ce8b7d30342e4b9af49a29fba4 |
| SHA1 | ad411a4c00f7d37ff2437298a55ec7a8465641cc |
| SHA256 | 78a8f1ce1736ae50ec4a765bff69f7765c86031422c9a86e498b1e181fcb7a2a |
| SHA512 | 5ae18ea881ddd753e4bd42e4614833ab8cedd54fce1cda8f1c5b6a5e1d4e321d55ad52630d2d438b673dd66ca483516bbefa0a9f2ec7e7e52a93ab0523c0c873 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 0cc81e0057f55fd4fb4a772750bf46a6 |
| SHA1 | 3ae8f63b1c7ccd2d004f2b1dbdebe6359a578572 |
| SHA256 | aca49c7946decdeac86af0577fffc5f259dcda19f67b93bf30bd33df945c1c4b |
| SHA512 | 4888b56362f2781f62c2ff1867add7773bcb1abd152561a26189248528b4408081e9695cf9dc5c150661ca9b1bd8ac843e25d4879b5130d7b38dc3721957dfdc |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 17deefec5cd088f6984830c8feda21a9 |
| SHA1 | 5c6416fd75e2dabca1edbf8a97dc2b729a7bbebb |
| SHA256 | d3b98b27757c75af8a5e249cc8429238e625e43113feb30c8f701df1eeaf6438 |
| SHA512 | 9bbfa24e865599801493f24cdb8a10ce00304881b5ef6d663bb543d80503c0d619e5fe8f47855992b6eb598c0586db5464519fa08beb0b4de7224d3672cfd4b8 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c9a52bca710902d8abe27a3cc199559a |
| SHA1 | 57020f186d8f39b1ac2f564fd4d448fc68dc0789 |
| SHA256 | 83ba0c47d25e98950ef3561d782fb156fd11233742af5e290d91b023c4e47a55 |
| SHA512 | 6dc28dcb405e1dacb1b309a1603443250c2cc6538221dd708e5395e01e674f497b22446af00892f385d51e084d0589905a3e32b5220059a6ea3d13b7ea6b3cf6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 97e5d345524596ae8bd033abbd269693 |
| SHA1 | 56f5b1242e6d07887234099443ee305325ac9480 |
| SHA256 | f610c644d6c10d72e5ca3c66fc014b93414ed7881401fb0e9709b2dca3203b37 |
| SHA512 | 8ad8fa6b38a27ecffd5263b82df6d456eb1d865f4e324f8c85d178909aabdf0df475fcc6fa4ed7356c5dd843d07897dffa0b270f6b31697348e0ff8aa9c0b350 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2183d6ea400ca6195258b04f2abe5339 |
| SHA1 | 1f94bd17744a95a4ea90e859b7d193968c8e6723 |
| SHA256 | e16e06ec0939f16d7a4cb94eeb0a09d09c82f5ef1c04dbbb74850a1b19f311ad |
| SHA512 | b16ed4043395cce3de6f24676e55d74362afbde46af6cad4885d9c7546280eb459fef7012f7b341d882d1736e3fb303e1bf997b42be0db99368ff65d7e9a17e8 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ee60832b146b8f251dc2c2bef8a9e505 |
| SHA1 | fe78c2a1faf39b88efc0d795add0d4dee082542e |
| SHA256 | 2899bf10252b00a07cf65763557595ca70f2cdd4165d498f492c48523bcaf32a |
| SHA512 | e23104ffa9f1bde9a1c3d33f94c5d8f19250dc8edf3610b563ec045166fb3e16b439f0f64ae3a528539f21001e2497ac390b16055100bb6f98e8e19ad1f7d028 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 7f88eb888e47a9534e4a88a889a21edc |
| SHA1 | be27f8bbeae19b0155cb4c99ede38bc98943d1e7 |
| SHA256 | 2e136a5be2622af9aee02a64530a70e0a164ee67afb75a3fffac6474012c123d |
| SHA512 | 0fe00865af6f870778c943615bf0e108ac2eb0ee58b509205377d2f978076d125829fcf58718042d5daf080461f4859bef344feec6d743f1b006bf473342be82 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | df6db7bdf7dccade0ac53097746307dd |
| SHA1 | cbfa1a2ee473ae440716918335ba953d4182b719 |
| SHA256 | 0d78b4c4cfb43b06066b77180b69a6b75656a102c4b69163b60fc7b55a2c61b2 |
| SHA512 | 2d4af013c9c0e53fc3903528d302b1d58bcde831e2463ac7eb77028f52f4e92961f2735f17eb725ea728a2d5b90451603a61a71edf8a1c5a8f45395a2d73cabf |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 3b913be63b5db92904a20e37270c6eda |
| SHA1 | e181a89a5ed3344273aa404a7c001ee096f12947 |
| SHA256 | 6f1f49559a123afb9d152b90594752392c93474279b9553531e7f39a62f86a74 |
| SHA512 | f5b5398a268c5f08d8a1e8350beccc64998981a8923d6b7731bde9aa72c8fb6372a17f27adfc242dbc7b2cad77e456ab2660fad2f4175a1862c2b75b0dc2a680 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | aaaa28e0a3b12cf924d1ecb862fd4847 |
| SHA1 | 23bd1b4ff60d51eaf0d236a50f386dc392b7d03f |
| SHA256 | ed4310a9f218a39baad3884999ae6f17b33d36040eaa88e6bffd02a1ef000e87 |
| SHA512 | d807e9a8b9778970f2482aa1a09a720ece1e7b3dd0e6a7152dff338a3fb7ed11ac5ba95b22618aec508bd947a4dc0da6d3a2fb530d5db43930c1e5962a2ab071 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 02a5a82d0ca30c2a719d1ba192602a37 |
| SHA1 | 9983d373b0685fd618fc1bf40333c7986f541fc9 |
| SHA256 | 737c0145cb0ba654563625cd0250db34aa9f13d040f7d38cd2ea7c8ad01704d0 |
| SHA512 | a8af4629348bf68943e269716f346fbd1b5b272427e9d0223371bec940aa1d0c15fc59a44d2fb8761ff8d84ca105b397c9ef40b98b0a9a203819f28f854b6f25 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 71eddcc74b23352ff4e6a76815c23789 |
| SHA1 | 8160437119aa35d5038d899339e62a91f6a0437e |
| SHA256 | 62719af02a461f41fa37a8165979e53b2c57ccf58b48d0b44be8ceb483fc403b |
| SHA512 | b91d62fd741667a509ed8c9a26258b3d1549c1fb05079464356c2fc8729b9b6ae456caaa2be090e0be2b4da91d3093e2c185bbb7f9034dd75bac6a2f1cae3bfa |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a56223841dffd7b0e771e94dfc43ac2e |
| SHA1 | 8374e572ccf2187ca8ad24cb5be72381e19e482d |
| SHA256 | 2a8f8365aef5c2e48a95ef1359d1618bb0920244f7f1887dbf3c4e1cbdd280a8 |
| SHA512 | 17e15ca6b791028c94e7ce5e59ac431c1fc7084db314d49bf48218eaee126b77e804c2a469f30f98adc087cc28b128cc80f35b3b3abd46938ced7cc7c51f827f |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 6248a03e2afa83caa7752fc98130a876 |
| SHA1 | 5588068781f78eac13867da4a3b719d16f666c9c |
| SHA256 | 985a3fe1bd30ebb385895e5720b65762bb799771298f1632497562b708d7bc28 |
| SHA512 | 6040a1f8228bebeeb299e73b1a391d8899cad3af6c5636c2d7deea9053e4f598362d872ab5d367c7e31fb186cb5133a86279b97112405536f2f5af1b6aabb575 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 35a5ae76fa51571e06d80da7b5ce34f6 |
| SHA1 | 882c5329266bf752b7125e13828ee5cdd54a0a12 |
| SHA256 | 3f9a724a283fafe92b05fe141e1d29f49749d02d703576fab551b2274826278c |
| SHA512 | 8b21f6a2e408e2a3d64d0cffed22269be530dd54bdc8665733fe75390d68a03fb6a15bca6b037e7cc93a64cca7296581b06d61f47e849b792c79ec054b2fc875 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | b0ed7d9bdcdfac05abeac33bfd838182 |
| SHA1 | 9e0a390bdefce26f166686fe78c18a7a03279b37 |
| SHA256 | 3c3189e5020ac4894456469c8b9b2bd927b93a37c64ddb7a1ad9a97b37893611 |
| SHA512 | 2d8be6dcfd9f4c2854a6c0344cc203f0ce8be7727e820942f42fb81ad9e49ffd6ad9df1df6f6f5153014795424d28c0311e249e40ef917eaf08bdf95514685b0 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | fbdebb15fe55a478197201324b07b64a |
| SHA1 | b53a990b4e1dda5852205e810fb1cb464bd3ee45 |
| SHA256 | 951e1e5be897101f5e8a06abb85257400b3d1681df8839368f4ad89f18bc8c83 |
| SHA512 | c66b8208819fdfe43ed18894ce696276bc2ec7271e4d05a871a32c8d5b988f85fdb44ed9106fea48d7acc90a377f7975b88af39464463525433ebc4da9add85d |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 70e4e005fc091df4be55a95fa084b700 |
| SHA1 | 274efd720c28885424fa6e43a494d88d6b6429c4 |
| SHA256 | 78607f649658aa2796579671959c84d1f2aa743ea62d182188c8f8728e77ae61 |
| SHA512 | a376ee444cdbc8a4a98550d91df07a7c42ab4044b20234f95ee77af720fbac2d762bc666259ba33be00b2a72a62399fdf2adfd136e3891e58fa100e768967a5e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 4dd16794eeb258bd02034ae956bd2aa4 |
| SHA1 | e2f9454ecb0c52e4b410439c2045e0461d089b6d |
| SHA256 | 2c366d26226b3de58dac4c1d8c301eb3be6cd1415067de29d742f5857e700b4e |
| SHA512 | 8f27ce09ab07935b931bcbfe79532bcce09b9690925fa7de75d6da14e97f6e910f5ad57ce5f99db810531cb8f1d4279e606c0eef59b219435ca70da1acdda8e9 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d883db9347df4c06fea8da612c6b4afe |
| SHA1 | 1ac04c4a020b406d17e0c936ee993fd29fbb1c83 |
| SHA256 | 950d8881ece7503fb4a9b93ba9ed9d8367acf2616baa89dda8c1e2e331bfb8a5 |
| SHA512 | 5a5efa6fac752d27fdb7ddcda6c74ce5d3132eeebd73784eab0897ff7ce4e6b776d1b5147076c50ddbcc121465cd7046bde8356d95f1666c8d93a7595b48a69b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 4baca632862c7781b7c8d67c2cbc8420 |
| SHA1 | 5d589c03f6b809209becb316453a81e131d75470 |
| SHA256 | eb1c2aa675bbbd881832c212cf85f19f406b68739af407d3bbd025c63eec3fec |
| SHA512 | 6f8b94ad90fc8501259f0adf3b01e4c57bd9c11f2065287bdee2027072070b23cc630b913ac3bab3ee769da8f24887020b2c01ba20b3f1dedb43e5164ee743e3 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F0O117Z\cb=gapi[3].js
| MD5 | 0fe383a7ddb9bbaefc3105b3297f5583 |
| SHA1 | f80c9d789f251909c7560bd91a9e1b9a10c26362 |
| SHA256 | d7ad4aad4e48174c30ef21fc32c9380659d2c99a5c39680e10ed9752139d8683 |
| SHA512 | 31de1f59377bc76e5d602d02273867ce750bbbccb7edc8f2803c0188002ecae6752ac3ec31c2108e64b0d871b01e6a8a06711969dc68bd9823303def0e7c1ee4 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\context[1].js
| MD5 | eab2bb4d87cc5463280426de8d1ec00d |
| SHA1 | edd43f42ae184814340f9aade1ca1da2ff66e09f |
| SHA256 | fbd4ff5494fd92349b7d777602e57620558befcb54161705495ed208082d79ac |
| SHA512 | b45dc15568ed7859f292dbb72e14a14533d62947bd2b71996c52496e91420e48a07b75281a17f5862f91159f74edc3a476ffd54188d37ee7417bf3fac156aaae |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d9000ebb25f432abc17f5e733b81cf81 |
| SHA1 | e5f2cfe7dab447833087fed9db6a9584deb6f148 |
| SHA256 | 95936383ec43defcc83d481cbc676c81907a8c2a9b4776e2adadb2524ee22b2c |
| SHA512 | f021a252f4066db1802915fb0c1b0b105ba811db8746c3f7f5f41aa3ab22b4f7b9b27796d9529f8c1e9f2b4ac0d1596f170923da50d2999c75b755796d3d93d6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 1e5399e041a19b58fbe926b89cbd6ff2 |
| SHA1 | 9a91b2c7e84bb5cc31032c0b6c22f158faa822e5 |
| SHA256 | 30684883f7c5ac7dc2d169ba63d0e8cf6842e17bf7d63076816d4aa2a3aaaa63 |
| SHA512 | 216f8575dc9f80d0ac7e5e78090d7b16deb3664a229d9669fc42e6476a85ad424b181ace37c0b3c4e6b9fc9e24ca03026770fa6b235727f11ab9b89f728e6987 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ba30db7ccb3cf55a96fd9066f4612754 |
| SHA1 | 4d6db2c28ab0024942d1a5cda3f696715f33d48c |
| SHA256 | be4944cdf17682fa502a094b8859a264d2245737783e1d781797f1f13162f465 |
| SHA512 | 6105aa3470cd920504eeebb8c075c7b7eb10005fe0786ab62903165bb3e3c2af0b0d3ea88cf2aa14767cd8e16a2fb9a4b87e24d9199a6cf7f2b0909e29a88b59 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | dba6449a749721c9767ba4aa24225e44 |
| SHA1 | 877a6d3948e3b7466860c6864f58dd3600e25515 |
| SHA256 | 14a1b6a45157c0bdee3d797ea740896dbfe3396db2fb27af6134d49fc5701ebc |
| SHA512 | c9f161d3c5a64bc4b9ed6bb51f0b348321745e3940c325d0b8d7de41996bd4d9618815054d68fb9c8397f3796aeb6f60f876fcafbd832be3ba746ab511ea0bed |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 6bdd3651893fbed08fe9181b73b8684e |
| SHA1 | 0a80cfcc79a8cc5771c7cd714397fa151f8db27b |
| SHA256 | 6424d7b6b8465300a3a7f391c8bb562c7b11d4d14a29e3e5fa06f2444c55eeda |
| SHA512 | 111ebfd9b1fd43f34e906fe8a96a32c73b5cf25f173ddc35e0de87ad7a797da4675d4a3dd3ee553692e6f0cdf91d9b2c030770522f78a33bdb67550eea9eb972 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 1261aaf25dba00813fcf5bb9cc6d69eb |
| SHA1 | bff98a9583ab07625097ecdbc973f30f769add6f |
| SHA256 | e8f7e885b7ebec95c31d5c59ac3c230c971ac8df7bf77e53f2f753d1436a9f11 |
| SHA512 | ed84dbe2b7618d5eb94212ff0c21718ebb631c6c7fca9f44003c9a171c60492307c91e090850679f27034ddd1b89e80b6cc6878c223dd0d820b25258835c2591 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2762765ceccacb6745718afecfc52b92 |
| SHA1 | a7f0b106c4c66d703d4416fb779d6b91c4c265d3 |
| SHA256 | 2ec2058606749cfd0ad2d161fd7df9132f769d0870691bc0ba7cbcd0ca3f8d95 |
| SHA512 | 0eeade201e4ab0fb40bfec5cbf319cdf0ddcf51abaacd3f94049bfac6b5db190c7193d173399559fa39c13dcaa81a922066f6eadc03cdd9fc575ad26c90ef81b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 6bb308c3a32c634fc1b12169b8696f25 |
| SHA1 | ba94620842cb18b53a542dbaa63b8c48b94336de |
| SHA256 | 42df05202dd04dd8e5733d4bd61eed44977769661102aff7078b7cd1a98ce163 |
| SHA512 | 99b3febb94cd0e723b90e21f7283423c63ac91cbfddc9daf106961026f6e0a7987bff799dc3d32f0cd9e1a01c02571fd052731d25ebc6932f0c3506ab76cf70c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d1ee8917115bc4b2d1fc7fae274d64eb |
| SHA1 | 1adf8fae85655d960240fd61e535a6378eaa5689 |
| SHA256 | 75b89e51fe5174344e0c4e6bc08c4080d62745edda9ca1dc628190f24800970f |
| SHA512 | b3b7065f6a306c845c8b0dbb3d922c79d9bf78eb1e4ae8566e9d88efb8a40d879a25d9439c2b82c209b2853a2853057e0bceb2536276012776989f263844669a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a0274e9aec65e7d36a1788431e369bf0 |
| SHA1 | 2a21d9fc979fb81308dcf9d9f16062dedec87087 |
| SHA256 | ddd276b041e1887f1d67380fc587799da50c2e139ce422812121f4a3cf98074a |
| SHA512 | 7c6969d385626f5d609c656a59aee54ca1d461f0c79d5aac24c6638af76e9b6e452d95ce44c438d073d5546b075d8e265c74365588b9edff8f4d9871aa94e8e6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 02f6a2473f04a48293291ae4b459a887 |
| SHA1 | 74b6e37e1c433ef0584ae06fcca91cbac8117710 |
| SHA256 | ac03dd114f5643e921a7d05c34ab3cd626e8db9c989d6c65206977c4bf468f4b |
| SHA512 | 4c47a4805e4aa89d7f719c76c554077e99f011ee3e98d0e96e9687aa63ff2f4aef584cc1ff968208e2c8595542903a8b47ed5d8cc3fc6f07be88b129ceef1846 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 9c73a02d416bb6a2dae7cbb1a9351b17 |
| SHA1 | aa5e6ad73d936a3070196596acf452a86d29733d |
| SHA256 | 1693dc57c06cc161a4e99daec7cea91062b588c120e0394c39b003a7f96286e2 |
| SHA512 | fa2810cf94cffac46257432462485e48b326e73f4949d8262836885d91aa171d563e5217e5489e77d57eb788dddae9603733ada6dabbabd110a0a82e870b99cb |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a082b157657c200d0713f93007f11bf3 |
| SHA1 | ecf5d53051f65fd42964a390954576060825a952 |
| SHA256 | 856d8573ecccd4a6844d1741db80f0135ad36cc6409899171ad57dda53dafd32 |
| SHA512 | b035518b4062103c08fc4839c57b94ca784b903ba1a66634c8331b5368f7a8fd8dadb4f51b1ea6e96ad26f4e7018d6af94b063777c57ddd4d12e99030ebc0f65 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 67a8d239ab5eceb31511c7d3d97d22b7 |
| SHA1 | e702e31306f29ce69546eb7a0965d5164770c76d |
| SHA256 | e86127b4cb2eaf82482630c20e56a810cc7cd01acfc2045ee35c1c8286af5e0d |
| SHA512 | 9bf219d5999010b9c829451e1a2c8131b1b88f39f72c4efc120ad8e387192b730e69ef4fb16dc3231fe3376faf68ca32bb4f4807a558052745b0133335d46c9f |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 92edbdbfcf67e8dca48e4733a412693d |
| SHA1 | 3f7744c58b7ea3d9a16b61839b152dca61dadf99 |
| SHA256 | aafcda9735da1369db10ef1f15f958f9e9da4c62a3582bdab039dd9b78a80cc8 |
| SHA512 | e3d0e49308f7ea6f2234b598352f496edd5cbafa34b2fb0a4ff907dc4d60dd59452bf3183c7084058dc841995302ab4198c1e8faaac2fcf3e34167c425de9298 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | e7efdd87265127e50bd4854be6e87680 |
| SHA1 | 80a522d1b3b9a69c7cd0dc10c9f32d2e8042cd38 |
| SHA256 | 7c92a0b193ccc208d853cca70cb3b3f258cc93aac01a7d1b6564f61466c55ada |
| SHA512 | 35bc2ee8b7302ec9f691b5a1765e637cf932651914d427938ce8455126134a5c0d0e820cf12bb4e31e227328fa05ed7995586ecfeec8d057b1ad554199d15c02 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | e791831d6b66fee45512a02e41a9478a |
| SHA1 | 5091f8ebf4ea63923d7b4e20e45224b7e51e25f2 |
| SHA256 | cc0fbe765a4256faf2b065dc36a6211be4cca310933e85473e489bef236aa919 |
| SHA512 | e422eb8c0778721e83a80fde300a1a04b516432acd12c95751271cdd652280935429df021a74f474ef2aac6cb67ba5e6b95b049602dc4206da11845df9a4d428 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ebf9d4b440b413224aba5ae498b08209 |
| SHA1 | f2472660165d45be0286f32db2ed63081ed65544 |
| SHA256 | 75ac3b76833c8c615aa408d98c031c227b47442644f8b4a34f51634370638351 |
| SHA512 | 0fd4e4a9572ab5ab60c62c3eb1e83f1dc24b5cd14599cc4592231106ef91bd1ebd8bdfc7256d6362fc6d9c3f3bf8fff820a69218b9798ee48c74bc80c331c57a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a3fe7150f27f9ad524764a0dd9cc8379 |
| SHA1 | 1b795ce18da54fab37e786ba4a8f9061c37550ba |
| SHA256 | acbfc8d8864863b3357e5c3ba44ba64f8d444e27d727747ecf494382ca62e2a3 |
| SHA512 | 3c27759b59c812c4fb3c1b58f458b3528b5a5767e95b771750f99e27fff0c35f2fcd325b12c3815891299bd834ddf043c6c56e5491ca72894acdb5b515415bc5 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | b125507fb133c408797d33edbd0ea83c |
| SHA1 | c8679ba7d21b37cf5913445f437303f4fd69273f |
| SHA256 | 31e5668f221f3478d1e25b28b0b67750eab89a00331f94af69de7e55ea93aa86 |
| SHA512 | 0517e590d4eaa176250509fd9bce34df283c72c75bcca9e7249c55a3a42e47e5ab9364f82890bc3e39c2a7219cf8ce6e5e862cf88fee2cdb8e257635fe4eaf3b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | be7f605e1b64d31b5842825353bfd5ec |
| SHA1 | e2b93abaf234420540fed729718769537d19c67b |
| SHA256 | b8e174ccf7bc0d4822746b6fa842cbc1d712a77ab74891d85bd5476d508a8977 |
| SHA512 | 39ac0fb8b8922283f3e36015c8776a1526004774c1212f84a241993c33875ea2536dad6d8f65bfb1969e4aba433a7644fdafbc9a2753e232124bcfcba38e5534 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 91860a1aabfae6615ed01302789a2b3f |
| SHA1 | a66c69f6d7585c6560a7aec3bb527e2590f28303 |
| SHA256 | 2eb579687eae571271a2203c839b2334a54774d08f733be0ba9d1739d8ed1ccf |
| SHA512 | 1ea0b3dea8984d581c51f64e25833efde3ef3d561ae332a574e2c3c742af4be70e63c30419d8f0828c1fb1df48f702dec73a5afcc446cb26e45ce567cdb8732a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 9946f98c707c184c27527b6e0c04617b |
| SHA1 | 67a8a7b767863d5bfb7600197ad66861a9fa192c |
| SHA256 | b89d296b861534cf627cc7de51cd1c69a50013ecfd7d27817b8f0ada81b4fcf9 |
| SHA512 | a28f48beee8b2589ddd5d0af281d875a67d28fcfd50e5b5a0fec19dd01ca5850ad4b3563ea0a916ef6355e2aed562b02a97e5acbdb036078927baf55b7ab0ed3 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 91b2d30ba3e7701636aa72941c0fdbe8 |
| SHA1 | 50674ec4d7181bb4b506ab36cc4141d177b94a39 |
| SHA256 | 5a529313c66e2628fedf51eca949ab4d96ef9fdedfa213b69229bdedbf06d200 |
| SHA512 | 75db38467be080f2e25c3d6997b37853660cdddc3686c86186fb4ed79d425840731cb5e3a8c3c0ab70262394130e48c5f3400d26330d50f91a544ea56d0d8acf |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 02d0c61533b20a4eeb5469726893a416 |
| SHA1 | a70795ed174bd7cf6c501cd6dcd895e379fe387d |
| SHA256 | 8b8f1db8c02af96d6b129182e9189581e67e0225bd4df290cf64da2d56a26145 |
| SHA512 | 0250b2043a10067d525b2b6b0b59d9563c264cc457ec8d61b0ee057a3865fc1126ca6d334b810ce67bd2988828edc5416383f133d1dbd74d5a2b824d3791a742 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\3604799710-postmessagerelay[1].js
| MD5 | 40aaadf2a7451d276b940cddefb2d0ed |
| SHA1 | b2fc8129a4f5e5a0c8cb631218f40a4230444d9e |
| SHA256 | 4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2 |
| SHA512 | 6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54TGSS0\rpc_shindig_random[1].js
| MD5 | 6a90a8e611705b6e5953757cc549ce8c |
| SHA1 | 3e7416db7afe4cfdf3980daba308df560b4bede6 |
| SHA256 | 51fdd911dc05b1208911b0123aed6b542e9d9f04c94d7504c63d89ca259ef679 |
| SHA512 | 583636571c015af525cddd5b8dc2ac9964aba5a7a9b0acd3908e4aeb4c2ee74cdfaabe49b0aa13d7b142748542426864e91e88e90d7f73bc647f0bfecb0ff7bd |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d0db8ec727bf6246f289b867378188bb |
| SHA1 | 0ea5c647ce048ba8dfd36c3c798f3e3325a31799 |
| SHA256 | a7c064607d539aa5bc85b6dda2602d066cbe7ef84ff3e0b57883ba3eee1c87b1 |
| SHA512 | 4d5bfdebed0a3f005f3fd688604633aab17bfdf487a5490293a3d9cf4bd6f678774f56fd455ac63d82f275d6b0638d4d09dbe5cc4cd6d27370233e3e5b090e13 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 19ddecab5ebf754ca6a1dd26639a0f43 |
| SHA1 | 51de04c5625c2aeb60702c2718714932fc8b3b66 |
| SHA256 | 97dbc0743bb387067b6810354f2fac48fd7387e6d24c59f2b44cc702a2bf2331 |
| SHA512 | cb6d0fa7e750b12de62daeebd94db3c0692a4f6069fda04a5605b7abb10acde1ff938f7062ba8045f086a43866fe532ff422f414c8e10206fcefc08c921587fb |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 8f0b74d4ed0ed4eee47645302f8a613e |
| SHA1 | c2ae5d4905ec53160dc8b69317fce46ff19adbee |
| SHA256 | 7bf8851cc845a2972bc6ed91af820aade75176949a7ed458549fe213a71baea8 |
| SHA512 | 9e4c3b60440f5ebc0837624f69bcd11ec2377451d75b61961f9d6548c815cf158a24f1f96109d4b78afa06599bcc03aeba154fa8232ea1ecd91a97ee79fe3b63 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 402fd890e1a5239a93519cff2e197cb7 |
| SHA1 | 99e42c1599c7c5f3cc5490083a94551cdc9fad87 |
| SHA256 | 73df049fdc7de4dd0bbecc73d4038fefa266eb91241caf844e34e10f93bcc7ff |
| SHA512 | 738eb5594bae9f8651e125d0f91dbd3211e7ba4b8d5b191482724c43a8e0f7e09471f883532f5d2e3b2f72a19450cabc370240c5ffb115470d8f970be929a11a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 0c99e78d1277251aa4a52a62f2d49199 |
| SHA1 | c5c1a71a5064406465103e5ba6a6c2e35494f1ac |
| SHA256 | 3ab8ad3bb66b81380f43bb589d0e3c961ecc4a20cc7df66fd70eb20dcf1df973 |
| SHA512 | 344a584b8bb4f93433eaf9531c95af8271f4db8ca80016955795869aec7abbf20326410f65477146ead255ae804251f9b139c6ea7b338271848a78862ea5d2f9 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c50c4122602b1d3b743b9fe1a7f25e9b |
| SHA1 | cdebf2395065fdb3f405f1c1f88583a04eff4a03 |
| SHA256 | 7ea4737057584c59dccc5457844cbdbab9f3760998ecd24b1921557f596a5ffc |
| SHA512 | 81a11aebf0cdd2f69ca19c2718eaa943f8ad35a6084483406a273b4ea695396d1c11430e440108d11294844503c90c99bef059e6311fd343fdf845ce20efb14d |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 5dae3878ec139a0b206335b28005d843 |
| SHA1 | 97a661d87dc5eae906a92405fa53298d315df24b |
| SHA256 | 26604e0b9d769376c267b7933dbca6bb373fecebe9b85a4f11bbd6e9bd776e0e |
| SHA512 | f947cd7af0c8a834827cb1e84874f28bf0ff35c2a52a8e739e7127a11e72c8173067b60665bb90c7587f41fed07c75409256107ebf48c2a6a53e0771369719c4 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-12 18:43
Reported
2024-06-12 18:46
Platform
win10v2004-20240226-en
Max time kernel
142s
Max time network
156s
Command Line
Signatures
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a1cd83bc5d3f6340f4ffacf21d41ac63_JaffaCakes118.html
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4028 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=5800 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4228 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5424 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5512 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=6036 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6184 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=6360 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --mojo-platform-channel-handle=6584 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x2fc 0x4ac
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=6980 --field-trial-handle=2252,i,16022092570067181109,3235558581947505669,262144 --variations-seed-version /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 13.107.6.158:443 | business.bing.com | tcp |
| US | 8.8.8.8:53 | 164.189.21.2.in-addr.arpa | udp |
| US | 13.107.6.158:443 | business.bing.com | tcp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| GB | 13.87.96.169:443 | nav-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| GB | 13.87.96.169:443 | nav-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 2.20.12.101:443 | bzib.nelreports.net | tcp |
| GB | 2.21.189.233:443 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | cdn.socket.io | udp |
| US | 8.8.8.8:53 | cdn.socket.io | udp |
| US | 8.8.8.8:53 | vk.com | udp |
| US | 8.8.8.8:53 | vk.com | udp |
| US | 8.8.8.8:53 | userapi.com | udp |
| US | 8.8.8.8:53 | userapi.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| US | 8.8.8.8:53 | s3.vefire.ru | udp |
| US | 8.8.8.8:53 | s3.vefire.ru | udp |
| RU | 87.240.129.187:443 | userapi.com | tcp |
| RU | 87.240.132.67:443 | vk.com | tcp |
| FR | 13.32.145.15:443 | cdn.socket.io | tcp |
| GB | 142.250.179.234:443 | ajax.googleapis.com | tcp |
| GB | 142.250.179.234:443 | ajax.googleapis.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | 233.189.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.12.20.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| US | 8.8.8.8:53 | counter.rambler.ru | udp |
| US | 8.8.8.8:53 | counter.rambler.ru | udp |
| US | 8.8.8.8:53 | p.kinopartnerka.tv | udp |
| US | 8.8.8.8:53 | p.kinopartnerka.tv | udp |
| GB | 172.217.16.238:443 | apis.google.com | udp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | p.kinopartnerka.tv | udp |
| PL | 93.184.220.66:443 | platform.twitter.com | tcp |
| RU | 81.19.89.17:443 | counter.rambler.ru | tcp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| GB | 216.58.201.110:80 | developers.google.com | tcp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.145.32.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 187.129.240.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.132.240.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.106.137.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.220.184.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.89.19.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| GB | 216.58.201.110:443 | developers.google.com | tcp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| RU | 77.88.21.90:443 | an.yandex.ru | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| GB | 216.58.213.3:443 | ssl.gstatic.com | tcp |
| GB | 172.217.16.238:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | yastatic.net | udp |
| US | 8.8.8.8:53 | yastatic.net | udp |
| US | 8.8.8.8:53 | avatars.mds.yandex.net | udp |
| US | 8.8.8.8:53 | avatars.mds.yandex.net | udp |
| US | 8.8.8.8:53 | mc.yandex.ru | udp |
| US | 8.8.8.8:53 | mc.yandex.ru | udp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| RU | 87.250.247.183:443 | avatars.mds.yandex.net | tcp |
| RU | 87.250.250.119:443 | mc.yandex.ru | tcp |
| US | 8.8.8.8:53 | ads.adfox.ru | udp |
| US | 8.8.8.8:53 | ads.adfox.ru | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.21.88.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.27.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.213.58.216.in-addr.arpa | udp |
| RU | 77.88.21.179:443 | ads.adfox.ru | tcp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| RU | 178.154.131.215:443 | yastatic.net | tcp |
| US | 8.8.8.8:53 | mg.dt00.net | udp |
| US | 8.8.8.8:53 | mg.dt00.net | udp |
| US | 8.8.8.8:53 | mg.dt00.net | udp |
| US | 8.8.8.8:53 | mg.dt00.net | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| NL | 188.42.92.236:443 | mg.dt00.net | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| NL | 188.42.92.236:443 | mg.dt00.net | tcp |
| US | 8.8.8.8:53 | jsu.dt00.net | udp |
| US | 8.8.8.8:53 | jsu.dt00.net | udp |
| US | 8.8.8.8:53 | jsu.dt00.net | udp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| RU | 87.250.250.90:445 | an.yandex.ru | tcp |
| US | 8.8.8.8:53 | 215.131.154.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.247.250.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.21.88.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.250.250.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 236.92.42.188.in-addr.arpa | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| RU | 213.180.204.90:445 | an.yandex.ru | tcp |
| RU | 93.158.134.90:445 | an.yandex.ru | tcp |
| RU | 77.88.21.90:445 | an.yandex.ru | tcp |
| RU | 213.180.193.90:445 | an.yandex.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | 140.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | 104.219.191.52.in-addr.arpa | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | nw-umwatson.events.data.microsoft.com | udp |
| US | 20.189.173.22:443 | nw-umwatson.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 22.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.249.119.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.planeta-online.tv | udp |
| US | 8.8.8.8:53 | www.planeta-online.tv | udp |
| US | 8.8.8.8:53 | www.planeta-online.tv | udp |
| RU | 80.93.53.88:443 | www.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 172.217.16.238:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| GB | 216.58.201.110:443 | developers.google.com | udp |
| US | 8.8.8.8:53 | developers.google.com | udp |
| US | 8.8.8.8:53 | vk.com | udp |
| RU | 87.240.132.72:445 | vk.com | tcp |
| RU | 77.222.33.74:80 | s3.vefire.ru | tcp |
| US | 8.8.8.8:53 | cdn.planeta-online.tv | udp |
| US | 8.8.8.8:53 | cdn.planeta-online.tv | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | yastatic.net | udp |
| US | 8.8.8.8:53 | yastatic.net | udp |
| RU | 178.154.131.217:443 | yastatic.net | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| RU | 151.236.117.34:443 | cdn.planeta-online.tv | tcp |
| RU | 151.236.117.34:443 | cdn.planeta-online.tv | tcp |
| RU | 151.236.117.34:443 | cdn.planeta-online.tv | tcp |
| RU | 151.236.117.34:443 | cdn.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | kraken.rambler.ru | udp |
| US | 8.8.8.8:53 | kraken.rambler.ru | udp |
| US | 8.8.8.8:53 | counter.yadro.ru | udp |
| US | 8.8.8.8:53 | counter.yadro.ru | udp |
| RU | 88.212.201.204:443 | counter.yadro.ru | tcp |
| US | 8.8.8.8:53 | 88.53.93.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.131.154.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.117.236.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ads.adfox.ru | udp |
| US | 8.8.8.8:53 | ads.adfox.ru | udp |
| RU | 87.240.132.67:445 | vk.com | tcp |
| RU | 87.240.129.133:445 | vk.com | tcp |
| RU | 93.186.225.194:445 | vk.com | tcp |
| RU | 87.240.137.164:445 | vk.com | tcp |
| RU | 87.240.132.78:445 | vk.com | tcp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| US | 8.8.8.8:53 | yandex.ru | udp |
| US | 8.8.8.8:53 | yandex.ru | udp |
| US | 8.8.8.8:53 | counter.yadro.ru | udp |
| US | 8.8.8.8:53 | counter.yadro.ru | udp |
| US | 8.8.8.8:53 | syndication.twitter.com | udp |
| US | 8.8.8.8:53 | syndication.twitter.com | udp |
| US | 8.8.8.8:53 | mc.yandex.ru | udp |
| US | 8.8.8.8:53 | mc.yandex.ru | udp |
| RU | 88.212.201.204:443 | counter.yadro.ru | tcp |
| RU | 77.88.44.55:443 | yandex.ru | tcp |
| PL | 93.184.220.66:443 | platform.twitter.com | tcp |
| PL | 93.184.220.66:443 | platform.twitter.com | tcp |
| RU | 77.88.21.179:443 | ads.adfox.ru | tcp |
| RU | 77.88.21.119:443 | mc.yandex.ru | tcp |
| US | 104.244.42.136:443 | syndication.twitter.com | tcp |
| US | 8.8.8.8:53 | zero.planeta-online.tv | udp |
| US | 8.8.8.8:53 | zero.planeta-online.tv | udp |
| RU | 176.58.48.48:443 | zero.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| US | 8.8.8.8:53 | 204.201.212.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.21.88.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.44.88.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.42.244.104.in-addr.arpa | udp |
| RU | 77.88.21.90:443 | an.yandex.ru | tcp |
| US | 8.8.8.8:53 | mc.yandex.com | udp |
| US | 8.8.8.8:53 | mc.yandex.com | udp |
| US | 8.8.8.8:53 | atomic.zero.planeta-online.tv | udp |
| US | 8.8.8.8:53 | atomic.zero.planeta-online.tv | udp |
| RU | 176.58.41.210:443 | atomic.zero.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | twitter.com | udp |
| US | 8.8.8.8:53 | twitter.com | udp |
| RU | 176.58.41.210:443 | atomic.zero.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | 48.48.58.176.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.41.58.176.in-addr.arpa | udp |
| RU | 176.58.41.210:443 | atomic.zero.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | vk.com | udp |
| US | 8.8.8.8:53 | 15.164.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| FR | 3.162.38.49:443 | sb.scorecardresearch.com | tcp |
| US | 8.8.8.8:53 | 49.38.162.3.in-addr.arpa | udp |
| NL | 23.62.61.155:443 | www.bing.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 155.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 14.227.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| NL | 23.62.61.171:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 171.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.planeta-online.tv | udp |
| US | 8.8.8.8:53 | api.planeta-online.tv | udp |
| RU | 80.93.53.88:443 | api.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | cdn.planeta-online.tv | udp |
| US | 8.8.8.8:53 | cdn.planeta-online.tv | udp |
| DE | 93.171.230.8:443 | cdn.planeta-online.tv | tcp |
| US | 8.8.8.8:53 | 8.230.171.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 8.173.189.20.in-addr.arpa | udp |