Malware Analysis Report

2025-04-14 03:49

Sample ID 240612-xcxvpazakr
Target a1ccca397045d347fc2868902f0d302e_JaffaCakes118
SHA256 53ae7b6566835c215ca512e1862c49ea5e5942f333d440d3cb68ec8bf0da3058
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

53ae7b6566835c215ca512e1862c49ea5e5942f333d440d3cb68ec8bf0da3058

Threat Level: No (potentially) malicious behavior was detected

The file a1ccca397045d347fc2868902f0d302e_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-12 18:43

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-12 18:43

Reported

2024-06-12 18:45

Platform

win7-20240611-en

Max time kernel

119s

Max time network

149s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1ccca397045d347fc2868902f0d302e_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6889" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "14868" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "14868" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8266" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6883" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8184" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3080" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "6883" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "14658" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8941" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10855" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "14776" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3503" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "424379661" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8947" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3503" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (str) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "14664" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (str) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6889" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "14658" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "14776" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3080" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000005ec80cf279b2564c91633e21940a80760000000002000000000010660000000100002000000082f9e3579182618585100ccb7542dae11daf21119d6f15ef413c982ef283e61f000000000e800000000200002000000077ad26dc5574b36bc78d95df2be70b7569bf4a3994582f53ead5eaff1c2b9126200000002e3a73f7fa914c315f0852dd3aa07a2a8ebb9d02806c7e840b3abc00a46cfae1400000005dbfa491b262fb16a5b9ce65979014c3a4820e3bcedc1977bd93fec39fd0a88d54a4ed0974d3a0022de4131e210826a4dadc5708f482ba26a16e08d3a234be96 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8184" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8266" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10855" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8941" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\NumberOfSubdomains = "1" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6883" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "14658" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8947" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 C:\Program Files\Internet Explorer\iexplore.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1ccca397045d347fc2868902f0d302e_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1876 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 216.58.204.74:80 fonts.googleapis.com tcp
GB 216.58.204.74:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:80 www.facebook.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 216.58.212.206:80 www.youtube.com tcp
GB 216.58.212.206:80 www.youtube.com tcp
GB 216.58.212.206:80 www.youtube.com tcp
GB 216.58.212.206:80 www.youtube.com tcp
GB 216.58.212.206:80 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 216.58.212.206:443 www.youtube.com tcp
GB 216.58.212.206:443 www.youtube.com tcp
GB 216.58.212.206:443 www.youtube.com tcp
GB 216.58.212.206:443 www.youtube.com tcp
GB 216.58.212.206:443 www.youtube.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.212.206:443 www.youtube.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 216.58.213.2:443 googleads.g.doubleclick.net tcp
GB 216.58.213.2:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 142.250.179.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.246:443 i.ytimg.com tcp
GB 142.250.187.246:443 i.ytimg.com tcp
GB 216.58.213.2:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 216.58.213.2:443 googleads.g.doubleclick.net tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 216.58.213.2:443 googleads.g.doubleclick.net tcp
GB 142.250.179.234:443 jnn-pa.googleapis.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
GB 142.250.179.234:443 jnn-pa.googleapis.com tcp
GB 142.250.179.234:443 jnn-pa.googleapis.com tcp
GB 142.250.179.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 fe0.google.com udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp

Files

C:\Users\Admin\AppData\Local\Temp\Cab3600.tmp

MD5 49aebf8cbd62d92ac215b2923fb1b9f5
SHA1 1723be06719828dda65ad804298d0431f6aff976
SHA256 b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512 bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 13f537bc10b257ecedd3b237e470f983
SHA1 ac16cd9372f321674e8c3526dacc68537a2a717c
SHA256 fba6f00219a639a20bfc7998276a6a21eb3f1757ef8b3548413bcc21c956d57c
SHA512 c9f64e060845245178a97a0b1cd0a94585b2242b782f7bdc7231ad558e9f3b2547fb119fd2009c26976d674f9a7c98a95a345ae4d2c3c09d2ab0ea92a568502c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 660b6e28b38ebe7e521064e60113fffc
SHA1 f2c25e9f931876bf6834191ec5b409f47f869129
SHA256 3e203426c4aa1403e940966905320c612ce4006cc87e03eb64058eaf6d402433
SHA512 96868e652d5e0c25b4d0f0ada20d345115f0c6fda26d3cab724c0c1867386d2dcedc408c51f776b7e019ce2e22755017d99bf663cdd9fd0d88b26182c6434bcc

C:\Users\Admin\AppData\Local\Temp\Tar3651.tmp

MD5 4ea6026cf93ec6338144661bf1202cd1
SHA1 a1dec9044f750ad887935a01430bf49322fbdcb7
SHA256 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA512 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 ac89a852c2aaa3d389b2d2dd312ad367
SHA1 8f421dd6493c61dbda6b839e2debb7b50a20c930
SHA256 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45
SHA512 c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_89FBEB9EEBFF8AABF1EBFA20B87AFE7E

MD5 53cdf49e21d95e0b82e9f6c31818ec25
SHA1 079889bb38af6d28d7d1f6b74dc31af0dca5dc86
SHA256 1dee124218ac02545ab242e606ece6a68ff6317b372905e4dfe9ce42d45b859c
SHA512 f7ac517e2282c71ab5915ba34ef1878840f56f27a7ed214e775f33062fd9ea6e4fcff3bb6486ad8cae84d112ffdd5859d5e80a620a3350bd133e10a093292822

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 012854887beace01d6f85d10010fe368
SHA1 cc1a145e59aa77389a36b4b2ddeb220ace09ef77
SHA256 01c4b9a8aeb01c29a8cd3880b09d780a7bb90ed01e7a9d63f192338cf0bfc402
SHA512 417b32d3ad07d0caa234503004ad1603d19e17cc66c1831a412aee4b5b6f963377aa5d9185a100394a1d3084f48d50b529de48106ca072735e1b3b281f2cef1a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_89FBEB9EEBFF8AABF1EBFA20B87AFE7E

MD5 60c593c796591612a55accb66d6448da
SHA1 816aeadcd13ae6c0829aee7c247b5dde70c7af95
SHA256 0a7ef74ec7fbf8eeee4907e58fe82af1928e84c8585a1684c3257db3ba58f40d
SHA512 fc0b1b8d6d428ecdeb395894b6eda967b75f1835a81fa436abb6fe8b3a0d89b5bbd45292bad2eb5531155b4da048ce579b57b59c94338bce58501d60c8f4b176

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\www-player[2].css

MD5 d32700adacd5d982244c69736b87bedf
SHA1 813dfe8ce4ee3608ed3580113e3b82730ff03c85
SHA256 2c7426a5c6bf00c328c96fb01c89c3e23ba7791e87455cab5aa3b546942f1fc8
SHA512 bbe35704822e0a82de2da2890da6c06138514070fe93978823601079a9371386915431f98e613adaa9566112d728f5f0274b3864e8a0c7da538833383ea5d342

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\www-embed-player[1].js

MD5 8940a491297381a0ce25360e21b39bb5
SHA1 43d7a4157e78777fc024415969c3a7bd550a4322
SHA256 afc766cb1c4a339c40d24ad926f05e8b4927eed7532b876291d0bd19adc9cf3e
SHA512 5772d7e7485db888676e69cbaf4c88af01872997338bc61e8e0344d5dba208c2909e167d54d8edcb782e17d1a2b4e9dba955baeb0ad0e43ba932b3bf25ae7dde

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\base[2].js

MD5 d0ce66befdade82bb7d0897bbeb3c7b3
SHA1 a8b4f3197bf359cafad7d360681a6273670fb905
SHA256 32b638cf9466cf241be0d7137c07ff73d864bfbbb338fc495eac64a59f39d984
SHA512 f1a033dde6b3fe6d8597a589b7e3fc5635793eaa60b741b9c2415055e5ac76856b26a90dd3efcefbe980b15e341afd28a466589686bdfabc4fccde43d13a9bc4

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff

MD5 de8b7431b74642e830af4d4f4b513ec9
SHA1 f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
SHA256 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
SHA512 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\KFOmCnqEu92Fr1Mu4mxM[1].woff

MD5 bafb105baeb22d965c70fe52ba6b49d9
SHA1 934014cc9bbe5883542be756b3146c05844b254f
SHA256 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
SHA512 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 b960bbb7ff2fde15a36bfcba9f1a5fc0
SHA1 3715a42777e1991f35d06d3a85492dd5707ea9d1
SHA256 473f2f6ddf6b9ea8b462bc935c2cd959e81b9bcb03c4eef6476f0c63ab9ae6d1
SHA512 c78ad5b306ccd3443773e90d2110c14ac356acf56a57886b92a49507bd102c35a22abdf1c8aa7d0c3f1971036d491a9c4cc9b6945a42f2c53a7e1ee9ad4f667f

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HWTP8BNA\ad_status[1].js

MD5 1fa71744db23d0f8df9cce6719defcb7
SHA1 e4be9b7136697942a036f97cf26ebaf703ad2067
SHA256 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
SHA512 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 7b7dd38a83e08d5658552dfdccf9f36e
SHA1 2d3d258d118a8184c2f45908f71f1cc82131e53e
SHA256 49520734ac2f153be56632c4520ccf6e1792976f63ce76d91b70b5186b063c96
SHA512 b2a5b2ebcf23969140f85e449c3bf933befe01cfbc14ebbb6c068ef3a8687ba8d0b1e0650c92fee20db394260554dca4e8453ea6262e7b7efd9a99bfee173f30

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 aae5ed0894e8630032ab00716a1f170c
SHA1 9f410a4a7e25070e4480a0e7d9021266fdda7b49
SHA256 403091799f60faea1fb60498f2df7c9bfd494172f52a0e5dfc6ea1ea4fb8cc89
SHA512 b0293fec2296e302c889f1e6cd6a0af09708b79fbc2c1cdb8fb328d60180c7382ca8d339bffbe113581ec837328fd58d10c078b15ddc8294613f8d395633bb68

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 158a004e07fee5483c48eb1443cf1e8c
SHA1 f4e02cb99f6facd9e487b0e1fec2cb80d0c6362d
SHA256 dfda24e9c02ea6a80acac1685461774ee95e2a5e729ff72a3c50924082f5df12
SHA512 b2fd91caf01ebf8a295c2fd704d996fbadd2836f5e95a785a22106bf5e6979f8ab3258a3ac9aeb8ae2722b9a06b429b6b1eeea56f4dd36e19ec45b3bc2fb9e5d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 af17cbb1384d91799b39d020589d8972
SHA1 7840df0aea95acddefde0954143b7928e8498b33
SHA256 335670b4f78a86786761b7718e1adae6e1f21d15a8e6e7d4197530b23f509790
SHA512 d90434d9c5fe962253ef5ab6fb492ddf09bb4adfd188749308981683be02585cfb3a38e7ec4904ceeddc7c63b37c6daded5eee53f9b4242b27af8d0782d3f8e1

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 5273e3654b01684d4921715352dfacfc
SHA1 d89e0381e6ce45be870e049521a326be3b475847
SHA256 bbca29801d434c14cea8eeb07bc2e41d4dce324d04e82bc93c87641855853472
SHA512 d70c607880a5796be61a0f99cfcccb3a83b5334ee63ede6404d9182fd28d7948bd18c736c21e940380b25b253101393da8c0848bbda1235c9ee2cc2e0acd4ac2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c492cf6ceda92170056715de43946812
SHA1 1da77d03c6ffe9b5b8ee529f03c07f4fc93ea861
SHA256 707e2753c90ac1ad0a6fd12beda96b6602f6a19fda9a8dd6ff3ede821c208eff
SHA512 155a06581c39ed8215729da70fab3b9e09cf2743d023d85c5c1628f8a6cc14e4b9ca2fcfdd61a66de15d30e3285cc0012a11fccb5d4c8e00a09e5fed5987d443

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 9737861b2f4ec6c427a8fc2b4c3d959e
SHA1 619cca480cd9b1d700a552a0b5313fbc0053ed27
SHA256 eb077ee55facdabd87ce8f08272c5f73510821c3e73c7680c5333d0466089f70
SHA512 1f937b3ac9d2643cd7ab5c1f8b9772817671a95c91ef8efc5feb1bbd4111d90afd22956cfd1aa0bd42f19e3ebeaf2ba36e34d42237c1bd826e154352e31f77c8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c358a182c9d0a94f035381ab4153d265
SHA1 06c09a2ab94f9b46b82c6cee3329d099c64e2285
SHA256 0c7a53c4425d4f572a1c742fa38607b3ac7a41d4a7ad53d008ff1ea0807fd571
SHA512 11e3f72cbc90ac16d7031f38e2ff9182dcb4078dba268bff34cda60d1d8368ed0b5900b29740a8b681d85f9b4237697435be70e078cf22873ef427dfbba875e3

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d17776c1ca35a0410c020f856fef28e8
SHA1 b21d7e30ec99590d560e1c184a5f127d5ecfed0f
SHA256 f4ef4b194b451329b0c736d05f4ba575a6dc97b8cf1951879d7c428e8bb88cf6
SHA512 dc474b34f316212b912d43cd719ba5bc3f57fbac1fbbd9865a277d83623482975e45fa5110b2ca1eb4fad62be95d291620f48c8364a4d95e9a9d21f2da1fe76c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 26571212212ef3d3166a8423ef19b47a
SHA1 8ff121a79e8dff3d8198eeb1a8799ef36215f4c3
SHA256 25849e95628b8313f4c836b406214f2d7567b1bc91520a4563b9186d1a9b4191
SHA512 d97f85dd549fce119d0ec21129050ccae8128c3546fb35fb3b5a53805d5b83e5476529337cc34420dcc639f7fb45daff85123b387bb6935c7706355e4a026d4e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 fb16de3448d3cb88d97b94803ae0e707
SHA1 5f1992990766497819b227ad52db22d6b7a9682e
SHA256 46890fc01f5491f602d4e43beb179e7c44a0a3bbb21ff46f633ef944f9694af9
SHA512 d42852f7f6779a570ac81138891d1078bdb75e606720f6e255ea2e6da1a34f5cc42e4c47c418c7d36c562ff942fba4590ef7e314786320ab1784fac1ec1b7604

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 69f091276ab172acb652905f1dabfeb1
SHA1 dc10c17363ad6a62a7effd02a14e2b5b4e5e8bd6
SHA256 9684647dff479dca5370a5977b72526bd4d6369547c9993d7fef94856f29b994
SHA512 53e310c5cfa237b6384d8265548e538450bb07bdaa96d3cd95df67265dff0ea7431ee84a0e213a2ef0ba6b5a4302e184ac8fbcc0a051103f325132a0ffdce31d

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8DU897P\j85XBmD3K-auBXRuR4gFy-YbXrRwDWE2e6ZsFqyJZWU[1].js

MD5 c31f785afed7c3bd94e48286a26482ad
SHA1 f66156197cf74e58d6e0a327e8a1e6503fe63374
SHA256 8fce570660f72be6ae05746e478805cbe61b5eb4700d61367ba66c16ac896565
SHA512 8932b515493774d5587a01fe6d3fd08c404fdb694219898ee32a44ef00cd8773ceec0f46af1fb2834211a64a7eb698ed6d1ee7edbf70e80593997ce65113a6a7

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8DU897P\embed[2].js

MD5 14d69fc9da4a63c8ad5013b3d3781842
SHA1 e0272f8403d95fd27df22dff5fc014e2ab5d8a3d
SHA256 e2a5632fec9da56d272ccdea5ecfa7000dc70659673c52a11966802e37a2140e
SHA512 0f85c67ae8969570f6cfa4d265013da7d4820ea11349b11b886d480d7d78df5c6aa1e7484724d6b21421db18678d22bae6d478d3d0e35506673fd609805d1976

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 ee897a5ff5b0e9678c5106f706e349c0
SHA1 cd98861add1b838abbb8462296e9c53d21b154a4
SHA256 6cb53f828d688e1188dd98980abddf095e0e0b082d636dc34f5aa4df11fc652f
SHA512 deab8d17ad039cbb3ce08179b310d850059446c032a0acda6301a451a7e8200b3041464aec89410af4ecdf3d4f18b0a90dc037feb6da470fd9b04cb4cc0050f1

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 ebcd17cc70b56fd27c6c06361cf4465e
SHA1 71f58c2c924b714f3fd127eeeb00e741328c42ed
SHA256 92764414e39fea82e60f3ec2ed30b7787f01827b901adb48fbc5a523d4bda1b4
SHA512 d6b36b7e4fe50c763e66d6988339bf5d0878bc9d1b2cf0cdc0b2eec69a26825046760a9c86cd7d82803ad615349e71102f2a5ad4796cb1ae6caada337f896427

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 bfc00d53b6a96f0ca585c50bef379075
SHA1 d1fddef1bb4666ef0910fb333840c1e41ad1e10d
SHA256 0ca61bca99c5b8ef371dbb02286eba82d6b37ae910f1d124d3109d144deaf68c
SHA512 0992fe364063dc28651e74fc2071a17b3fa988b90c11e59672203c2e75a97ddfdc8610569fcade344d50da8d29ac98a3f2e4031bb48268589a9f9666fd8e5b3e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 6751f8ce152a9155304aa819bbcedb5f
SHA1 34a6435b7244cbe39abe75dd56fca3e224ffc872
SHA256 e67d9ab9ca5ff90c9c7cdcf0437da38afa58679c14bd0a748cd3a6c2e3b1e415
SHA512 110bbb2dfc4bcfb34daa338d3eb929c30c0ddf645793d1ff05f4ab2fb83b0b0bf1606f1a6141db4d13b2284da8a31a90f810bd4d19918525b4103093b4114047

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 857b5b023fd601ca6cbb5745768f10ec
SHA1 4f2df1c61c4fa7148370216a10925aced5a5a407
SHA256 7f4682cbbec43970931f5c12e6c1ca1257298322cc54c83b43d55baf46c7493f
SHA512 dbd67e67e7f83e39027a97944947be52487b862016ef6ba0e25ca8d4bd465b3f4026d9624694e1a6bde7d1864d516823127aca89207b5c1dd471feca12d98552

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8DU897P\remote[2].js

MD5 122e83be4335ed0b6b270ff458ce45fc
SHA1 4cb88bf4d9efe3759b45d01dbdf258ab8b4147e1
SHA256 13bace7cd8fc970632b82a7f1614ffff8f8f9f8dee7d5072d633c4ad5f7cadc5
SHA512 188863a2f4c41b81179f8039874f989163a3c61ad4a6d766dc86aacac71f80add476682b6686f8c95f6be031ad78bf5767ca48544aa64ffd303f522888b558aa

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 8c3ad9e061a6d79e066ce405287a565f
SHA1 b1bcff43035ff08b6ee97c8e21ca35fa4ea50d54
SHA256 8a29e63db8d165e64071db87f70bc1b87ae4963720cf923a3d600e93ea56c893
SHA512 545901f9b718371bf7139c6fbe38934cc2f33a6ee0a6ad8cb62c22ec08515cf702d63ba59cf3a6cf5270c9c42e7d92f8ee29720758fd3cdabf2ca55b72d49571

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 e811e325182db683e972b5d40adc4a20
SHA1 2695fd43ed6bacbb21ed7dd5bafbfd9baa5d5724
SHA256 8ae572571242052b505fb9406af02899608353079f81ecba1d8cf92fca238478
SHA512 2af918f8b7d4a1b01f8245203d6c2a9d6de34916138f6cebe8ca1420c35abc1f7c982bf5381798f273ba4cd60c8e60c18b1085eebd7f7b23795b16d26705f940

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 381a1ca11893fd63bc9fec7c9dd00b4a
SHA1 9619b67930665885bd0749947c5c8c3f25d74c06
SHA256 474749b28c5e179dcb13ce4d872afc92f88e34017aafc518423778bbfb5755f3
SHA512 1ed1148c79b41680e3510dd04488e85347aac23da7931e135c3ef70d78614e2fe3481aea2c75f49cb53986ff0a62ffe4f2918acfa654da37adb7352bace15a8f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 2cecc928de0aa98b44f11234cd166744
SHA1 7beb220e5025b67aed163029d822b9d0800a82a4
SHA256 2d8da7089b5d4498d3f82735cecb79f3506078c2bd7688e8326950294d12f05e
SHA512 2d15243feb2ace3b68965c4dd3e8ebb349d7523186d9093637415ce79379d43f4a116ab28f27b36f67f4c2af25be5ba947ad92c1308addc6dbe531a00964d645

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 3214b3798eb03942b4d7580690d1c5c2
SHA1 ee2b56bf4404a0fd990fb364873601f48b623701
SHA256 e86c1a9bce5fba582dac2e7ce3028d646b99937e25162122ca10d812e5d04328
SHA512 bda7b3eece1adedddd3e3dd331d60915e7c3f7445167378e368e31a98bf9ff8f15088ee8f8517336e02013f4905b4895ca7829fcae995b2761890bb39d5423c2

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 249c715aa355b1ba37a55ae179aa1d99
SHA1 55d485e6b6149a831f43002b5f89de26f1e28c3f
SHA256 9b0e1d771b1fcdf4694ceb740b9a82b2a8362317492048c77dfbab1755650af9
SHA512 e9a1a17b0fb1a4addab89de94fbbd3ded55659aa43fb052a3be1d438c1ba0caeea739a23f2857fda4b53b624b41eb159780bde6a99c0f7ecf11b50bfc3cf4e87

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 46cf93afd2b25f0b2c63d87bcd636013
SHA1 64de5353284d6386a321a2abd40bd5d4f9a7a4d4
SHA256 ec4eb424bc94a5fced6819452d6bfd6c3ab88d55274f5bcfbfecae14c1fefec8
SHA512 6711ead49a2d57a122138c1d9509bc3fcce306bb3d0b35084b0ca49c2e26d81b24dd77faaad0c76b591264b6a268d71809f4068c05f77b7e8e2154117d540913

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 11d3eca165f0b069832e541362509bcf
SHA1 d41e3825615c29d079e2af908dc89e984b64718c
SHA256 b9d624e1a3829692c161d4487afb1b3d818b12bdb8fc6b2f5f0ae9ba7e4e5420
SHA512 2df4ca2d4dac697a8510fa5c12bc30a08e161c04bb4dc3e17376c0b78d87e3894a7018002c69464f3364b8b63b1ce23815506c1f04859953e92c6c8b7e5e2e55

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 7dd2b04d69babbce617fdb06f07ab0a0
SHA1 02fbc7318a4e99c65e7c0b3fc96c94ac65853319
SHA256 b8dc5ce1683a5214ac1a52352d05948071406abe0351df5397cb67d1d1c6d24b
SHA512 b0219d15fb8a8a1b5bdcfb21b330d9585168c074c749996600d9150f5a7a0c31b501dba54068b0c287546a51664948d1ce624de265fd56ab0564a887de566437

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 4a5387813c3843347dc344bafad79712
SHA1 f8c568e27f69954d5f40909fdca4091c4b39e98b
SHA256 79b9853143de66511a3f063fa13ac506ef09dbb0abc97901e3ed2acf1a39c83f
SHA512 e44620ca7cf92f832a92a1c995e57e21c1cbc0c57880dfcee219d646a5f35e2ab3f43be2c71ee1559d2a3509ba39c908f448d09e0fb4dfb53e2dbc2cb414f8d8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 16bd93657fa0e646eb00b764c753e0f0
SHA1 8b456f702012ba75df8675bfddc720fd3637b0d2
SHA256 1e76e6f6894826039c9075d5a99893eb66603be8254132e9680428222aa22be1
SHA512 66ed92b2d3bd22f22a4451d88b7494c0040d337d5b600f28e8494fce5113dfebfdf0314c06b521a9adcc549aba39ef92ef0afa8d691d0cdbc6e04a8d793e7011

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 b7617f2bb3a61402a92b17efa3785d1c
SHA1 e67ac368631cbe0fbf17d896275b2f9199dec011
SHA256 ef71d0a31e06cb153baf9c3caa1ef6fd3c7576933e25f9f08d7737ccadf8cbf2
SHA512 69c14bcb9ebee0f3cb12d642bab9a3c7bbbdc3d712b40c04947ec677d8029c708c959260b6fa08a5f8dc50d07101b81921e2417ff2eeabca4f8d7ea4eba78399

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 b87932323a886eb3462c929db5648304
SHA1 2ac5904c9c45c5c544571902659921f771c377b9
SHA256 73f7e37e8ad16a7caa2fe60740a1c84788e3f7be06152b2e5889b5a7fffe09ac
SHA512 358546d8626f8ee48fbb43ab95451b043591a8dfd520fd329657e63e94266f89af2c8c149e16c0d821453c7fe443793715022a85329801e31850272df1236057

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 dfc85d84aa8e83db8df238765a2e590f
SHA1 ad5aea1902158e92c3ab98ed735975b53fa78450
SHA256 a84c41f403465fbc8cd04fc1f8c1603c5535e6fad79b9ce526fe7c0fb83296e1
SHA512 2cfb155b968061299e9c5de50fe88fd2e3ae05dcf3e8c54ea4ab7094a0a695f767a73a38766053d71ddd734a7a9d99bf40d894da9c34ef4e19f00a51fbe32e78

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 17adca4553ff3edd19273bf0d9b733a3
SHA1 11ce74dd0e6644ff9519f8a5f55cbf630b27be80
SHA256 840bf6ed60a868f1b523840731015ac501dd5dfa8e99e72c5704f64aebc6faf6
SHA512 6d80d2b8e9ff228ed5f73271969ac44ff6cb60f52b6d8d04a0163a204b2112cc281f7f11ade5c70abc4e6dbfe810f30a2534880ac889cef3932d25452a0485e9

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f4771cff651b6ce614570cd8085a3043
SHA1 568209e594c3f5bdd098f1bdd80aa75fcc0aff0a
SHA256 e4e5f93335f336d8a977e1abe0d11049625e2eed94be7fc1105677d592a30747
SHA512 87b8d5974ab74528d44eebd194100c03bb4e249b6a5c6bfc9ffa1a69066b12b6ed36bb1219f6ab387cc7fc21bf22b50c35b622d3934481072047ce5a441b5714

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e6e399be5b3b414b94d1fd9b880be68d
SHA1 cd59a66c4fb398810ca76d84c9a74be627b33936
SHA256 1bf61be1700d8a3523463f129b7f04e68ad402c5ca4a5ed9555f39c33eb90e8d
SHA512 eb00bfd988d9af920432e1dc276b153ccea445dc9c14eba8b2c87c268f039f3b2d740f43b84cfb1cb71679c6a17d93d10284698399a023073ad037e94ca24291

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 7d1afada48a6f68f739c02bdd54c9390
SHA1 7669d83f77aba7a740623e551f541aaf7bbb85e3
SHA256 18553db51175d6b8fc38e3bd338421eef10078b4d4267fc7e4d533afb0ada1e3
SHA512 f966efb60ff9e66c2f72a95c1dfeffca84fab72cdd94d68eab9ee6c0719985ed66d872f8b9831441680a20b688b88220968f2e3e9703d2df375d518c911ec93f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ba94e42612fc8c78c160342beb90f16d
SHA1 54c097d4cf1ecfd3cb417fb8664d8a711a389c6f
SHA256 154c39f875c2ed8f08a879b101067465ec78bb9f6f5c238abf59c4541b47b066
SHA512 dcbdbad82235fb9237861d3f8d72d7f7171088ded800b3a517eede48c79da9cde546328a15ed381b801cd87749c3a127535f420b2627aceaa4090309041304ca

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 65726fe7fe695141812bbf6b8ae6d65b
SHA1 4f98f9a342af3560b6e703af37cd249ebffe5df4
SHA256 ba88cd6edbc99fd7e7f356a51a016630ffa2590fb301fee895baf9580d14d6af
SHA512 32a8cb575392bd1c07514afe7e7ea87b8fcb5323ee0775971c8560b5bd414d7e0377dc6f75e7a82ed43f8aa69fb95ebe58618076c28d39550c00364191c8111a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a0a192e0440cc3278b9a4749ec7d0383
SHA1 2c9759a36ccb693e81c0c4d685dd074cc596064f
SHA256 efe7f8c744bdcf2c5df045c4cfe62cbe1e59241175f4d5ec869c56b1f21743b3
SHA512 5311964a59c05e98d0478fb134d250909119fe9dc3315c87d9b9dead3e9cdfed0ae9383b03faf6b0bc681983b3a6df928ca8c621e9a07274acb530a8267c5047

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 08df34b44f35fcb46d0407b685afad88
SHA1 0db9246cb0310d2acde1dcd9be37fb6c72d555a6
SHA256 0100fc64475f83c83a9fde99e6d073e5abc3c9ff9d86a4cb11e8428b24394c8c
SHA512 8df263b6b6183f29e8352199e20723065365b65313fd6bc448be0c339bf8d76fb833ca03f5ca5420efc7957bb5c0e930c8d1cd2a1388e1f06cad2ab3cde0d9b0

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6e4b564d46d35532919b4c001ff2e950
SHA1 f06ac4d0d0521b01c11e52746ec43c3e56f90098
SHA256 5210ecb669e8330d739f143adb3a6221a469ad6e5a32f1859aa3e0a613f00760
SHA512 5f4cbdeeee03d19b13eb8e982353efcc7884eb7456e16ebb3a9d1b4b906c1a411505a54a47d68df299e8ecce85cb5c2a0f34f367ddfbc2bdafff7f365623bba6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b109a124584a74ea667aeb6db26867d2
SHA1 296d11779685949861101e15c880e4487f004f3a
SHA256 acc6f12e0a4ce9ffc0f2a8d4c6972dd5dbabd87c4f25bcbd53259552ebd65705
SHA512 f86d2874b724ac6fce3e2afdea6a2bee988ad76a7f0231b04bfe3c1bb352b16dbbc0b37009e5c6eadfc15c432d3cda1d60d3eec26bbb10416efc16657447895f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 14d540f56f4634aecaf218b83cd56f4f
SHA1 f387fc43e5517e13bdfaa40f2fca704566d371b0
SHA256 e1703b17fbbeb3236a343491b00c31c242503df16c9cf96d5ae330a787ddc2a7
SHA512 728ebfcbd88fc93554d7beadf43b0c3264770753a64bb732a687c94b8e1069e15399adfab100371445c95da7dd539ec0134c9a7557c1f4c20f83f147cbc1ce20

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d92fe66b98483aa96d031ae1f8491502
SHA1 7ca0025ab591eb17313810e7f12acc6d4a134a72
SHA256 bebc165f5595858d1c0e0aba47972e03cedb1cec8f8af58a672f34487e1cd08c
SHA512 edcdac2a9b82d12223ea7509e98be78071a79dda8f1c78b2db2915924c7ef75068b0b296f94f61719aa631613b397346f6572793f1f379a3f21a49b0b3c48d82

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 c62a86006ba1dd58c81240a76aaab561
SHA1 7da9011cda1d1b5af963584799326d4cb8d8ca10
SHA256 582d366db7dc03edf854deb04a3344a7f72a8f0f66a735acf58fa5a7431ccf9b
SHA512 f06279eeb558ed3ddc5419fc25efb0431590993ac0fb45778186db5dc187bf2f322760f5b296931cb4b174f8bada770a405dcf15d407c05447c7299b7414ffdb

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 8a15f4b6ca77ae317d7742ac1fd7730b
SHA1 9c49f54c4573301cd206f4b503a8be83b8924bbf
SHA256 2f2da83091c65fa9a767c2a7d2130f14ae913efb1761badb105df0a28016daaf
SHA512 5835259c4e8e5440b389f2047c0261b08a6d29f97edab7c62a49c8d24057ae66e67333bac71d9e60bd0751f5509643d67f7d6198fda103722c98d1718074dc42

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 70307d351a340b494c1f09cfe36d73e5
SHA1 677dc928bd355ba2fd35ed7f45b0558bbb8bd321
SHA256 e228394c04df014f1614eb96fb28746c9aa4a5eef118e57a231d632b2392d870
SHA512 956735e44d7ab65e226514548b74bb2b02d823a4a33200ae8236ac94e2977cd748f11f6d5c027ae8d10b1f4a4ecef7781ded9f5d7ec131973da668dde33f5979

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\T4F8K7SK\www.youtube[1].xml

MD5 6a0ad3b3af8ee425b869da975a47ad9e
SHA1 80c166f70ba91bda5c8b71e12d6d4808dee9aaf0
SHA256 687fdd384da7fea6d1c1b10572db621de4ea5b812d1795eb933db924c191eaa9
SHA512 7a08d4a069af9cb8474b96b11bf44e660c901fda6318c26a1bca13f4fb5ba86473553ab0c525718387c848a09773771b3ffd19cebae51f56d430f8b6bbc72fa2

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-12 18:43

Reported

2024-06-12 18:45

Platform

win10v2004-20240508-en

Max time kernel

133s

Max time network

143s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a1ccca397045d347fc2868902f0d302e_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a1ccca397045d347fc2868902f0d302e_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=4044,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=4632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=4152,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=4524 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=5128,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=5260 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5312,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=5296 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --no-appcompat-clear --field-trial-handle=5412,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=5500 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5856,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=6524 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=6464,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=4860 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --field-trial-handle=4804,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=6420 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --field-trial-handle=6356,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=6200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --field-trial-handle=5752,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=6828 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --field-trial-handle=6284,i,5711962389779687290,1245653010537220991,262144 --variations-seed-version --mojo-platform-channel-handle=6308 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
NL 52.142.223.178:80 tcp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 google.com udp
US 8.8.8.8:53 google.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.4.4:53 google.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 4.4.8.8.in-addr.arpa udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
US 8.8.8.8:53 konthaiusa.com udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 178.223.142.52.in-addr.arpa udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp

Files

N/A