Analysis Overview
SHA256
47074cdebc86213c21a8b72318e1cdd882f95ae8aa7c23c3bcb9739a32337015
Threat Level: No (potentially) malicious behavior was detected
The file a391892974afa0633d15a94b5fe4b471_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Modifies Internet Explorer settings
Suspicious use of FindShellTrayWindow
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-13 02:41
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 02:41
Reported
2024-06-13 02:44
Platform
win7-20240611-en
Max time kernel
147s
Max time network
148s
Command Line
Signatures
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "331" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "12801" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "22453" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "19036" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10061" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "13590" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3908" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10257" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "331" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\PageSetup | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10175" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3824" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "325" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{8120B6F1-292E-11EF-9EC9-FEBBC6272832} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "233" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "325" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3826" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "19036" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\InternetRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3826" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "410" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10257" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 903476593bbdda01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10061" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10257" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000000b2968c6cf60b74b94229c882944fb8100000000020000000000106600000001000020000000ae7bd7cd1dcf789d9c58852915b66e0e3b5fee67fe3d85ee67e995e5c81e9649000000000e8000000002000020000000141f77f6dabc038bc4216083124c314fa0ad19f9d2108016d42577557d41a8b52000000098802b940d32e5fc4a125c3be09b864ba5819a9b5cb091a69ac3e274f01f670940000000e0f69a2245d68aebaf3e1cd596a3c5414132347bd2ff649723100e98aa94faa3b4651a5add641a9ca54136a7f35b1c74375b3c14bc272d27d365107e6f3e25c8 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\SearchScopes | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "233" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "3824" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "325" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "3908" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "492" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "22453" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "492" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "13590" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "115" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10175" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Zoom | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "12883" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of WriteProcessMemory
| Description | Indicator | Process | Target |
| PID 1452 wrote to memory of 2736 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1452 wrote to memory of 2736 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1452 wrote to memory of 2736 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1452 wrote to memory of 2736 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
Processes
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a391892974afa0633d15a94b5fe4b471_JaffaCakes118.html
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1452 CREDAT:275457 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 216.58.204.74:80 | fonts.googleapis.com | tcp |
| GB | 216.58.204.74:80 | fonts.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 142.250.187.238:80 | www.youtube.com | tcp |
| GB | 142.250.187.238:80 | www.youtube.com | tcp |
| GB | 142.250.187.238:80 | www.youtube.com | tcp |
| GB | 142.250.187.238:80 | www.youtube.com | tcp |
| GB | 142.250.187.238:80 | www.youtube.com | tcp |
| GB | 163.70.151.35:80 | www.facebook.com | tcp |
| GB | 163.70.151.35:80 | www.facebook.com | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 172.217.169.22:443 | i.ytimg.com | tcp |
| GB | 172.217.169.22:443 | i.ytimg.com | tcp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | fe0.google.com | udp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
Files
C:\Users\Admin\AppData\Local\Temp\Cab2030.tmp
| MD5 | 2d3dcf90f6c99f47e7593ea250c9e749 |
| SHA1 | 51be82be4a272669983313565b4940d4b1385237 |
| SHA256 | 8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4 |
| SHA512 | 9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
| MD5 | 6432b11941a982c236f3c374ec7b4290 |
| SHA1 | 22a73acedbe1a5b73d8fabf3ac478230afb7da8c |
| SHA256 | 12cf7fcc74e2c4e1393024d89dd3e1859cf168c7f39644a85404016564a1d7b2 |
| SHA512 | 1028ac95274219c888c0e8473ffa991eafe0f9abcb96554ec44e7a212378c22ba45bd7265eaca7be3cee87011efbc3a1cf8e36183492dbcfacde5f0fe5a812e6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
| MD5 | d3049f1a4b143f13261e38abab901109 |
| SHA1 | 1810917619ef7b98f40697c12f35a75575665f8f |
| SHA256 | 69df6863aa24aedecf107a7e2e0353d592c52a5905cc2833d824c2298733e9d6 |
| SHA512 | 6af844057e960d6f4165f297891b676492281fc4abdd7346a220b1972124fabe2a9e0f7b3825c9f67c1ed885262cf6fb994c4dcd607c1981005291a240b6e958 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
| MD5 | b4c2ac1eaf72e9f870f51e941d1e6bb9 |
| SHA1 | 34f98aa0a7bf79bf861867feb088ea5e3b2a5b7f |
| SHA256 | 249301367eabd7172098c90495c12aee5036d4a81568d312f2e0f6cea87d9c4a |
| SHA512 | 794c6f06198b8fcfd3a686b0acd908f4dad49e1c6229a06b5d032497b4ceb352efa4850ce2c917d58851887a0bc0875bccd40977c7724f20d072fee3415fdc27 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
| MD5 | ac89a852c2aaa3d389b2d2dd312ad367 |
| SHA1 | 8f421dd6493c61dbda6b839e2debb7b50a20c930 |
| SHA256 | 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45 |
| SHA512 | c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36 |
C:\Users\Admin\AppData\Local\Temp\Tar20A4.tmp
| MD5 | 7186ad693b8ad9444401bd9bcd2217c2 |
| SHA1 | 5c28ca10a650f6026b0df4737078fa4197f3bac1 |
| SHA256 | 9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed |
| SHA512 | 135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_89FBEB9EEBFF8AABF1EBFA20B87AFE7E
| MD5 | a72eacae1098a27d1662901d3788d8ca |
| SHA1 | 0beac6090a21b14e7bac7d49990f7a8c628a2a72 |
| SHA256 | de98daae474146a4a09a2dc77c8f1ce063a16e3a79e69d800d4d03d3a5c7dde9 |
| SHA512 | a58317ebee6284ecf0c12adb9e66f481adf7a06ed18e40ccf4b36a62b5cd5eed846d2cad75b05a6b34b0149ad80e3c27fa04816270f3d3f75514e21dfef766a7 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_89FBEB9EEBFF8AABF1EBFA20B87AFE7E
| MD5 | 60c593c796591612a55accb66d6448da |
| SHA1 | 816aeadcd13ae6c0829aee7c247b5dde70c7af95 |
| SHA256 | 0a7ef74ec7fbf8eeee4907e58fe82af1928e84c8585a1684c3257db3ba58f40d |
| SHA512 | fc0b1b8d6d428ecdeb395894b6eda967b75f1835a81fa436abb6fe8b3a0d89b5bbd45292bad2eb5531155b4da048ce579b57b59c94338bce58501d60c8f4b176 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\www-player[2].css
| MD5 | d32700adacd5d982244c69736b87bedf |
| SHA1 | 813dfe8ce4ee3608ed3580113e3b82730ff03c85 |
| SHA256 | 2c7426a5c6bf00c328c96fb01c89c3e23ba7791e87455cab5aa3b546942f1fc8 |
| SHA512 | bbe35704822e0a82de2da2890da6c06138514070fe93978823601079a9371386915431f98e613adaa9566112d728f5f0274b3864e8a0c7da538833383ea5d342 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\www-embed-player[1].js
| MD5 | 8940a491297381a0ce25360e21b39bb5 |
| SHA1 | 43d7a4157e78777fc024415969c3a7bd550a4322 |
| SHA256 | afc766cb1c4a339c40d24ad926f05e8b4927eed7532b876291d0bd19adc9cf3e |
| SHA512 | 5772d7e7485db888676e69cbaf4c88af01872997338bc61e8e0344d5dba208c2909e167d54d8edcb782e17d1a2b4e9dba955baeb0ad0e43ba932b3bf25ae7dde |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\base[1].js
| MD5 | cb463df0a090cdfabc77af2691141830 |
| SHA1 | e3dde6a1f5c4803e69839154013496a781137473 |
| SHA256 | e09e2e8a3cfbcc88eea12d0b17161e1f2c8c75f1bb21100829c09f9858db3f24 |
| SHA512 | 099374f7b03a4635390b94525105884fa101d93a583eed0d92def7d2de3199d2bd57fc63d885e8e9af0863db40cf521d2fb770eb09400a4c6285f7c37ad88e8c |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FY3LN490\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff
| MD5 | de8b7431b74642e830af4d4f4b513ec9 |
| SHA1 | f549f1fe8a0b86ef3fbdcb8d508440aff84c385c |
| SHA256 | 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a |
| SHA512 | 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FY3LN490\KFOmCnqEu92Fr1Mu4mxM[1].woff
| MD5 | bafb105baeb22d965c70fe52ba6b49d9 |
| SHA1 | 934014cc9bbe5883542be756b3146c05844b254f |
| SHA256 | 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed |
| SHA512 | 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | c1ddea3ef6bbef3e7060a1a9ad89e4c5 |
| SHA1 | 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966 |
| SHA256 | b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db |
| SHA512 | 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 61f8187da35823b7c309246776f01dea |
| SHA1 | b618b9c3cac0588eb6be3906ebba26c5e8d18d9c |
| SHA256 | 84cf7e9b42a9537c52a3d1797528f1ba8874942ea24c63c5eb5d671f6b935828 |
| SHA512 | fe584a13618e5fa726b494c921f9494ae2ccac61d2e96685961e03cb48cb6ba7f6f74f7d16a402c7afb65b20bd1d4d868555cb634fcf5344d3f8f1338155ee23 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | dc72b072247aee59db9493329a0b0339 |
| SHA1 | 7c132018f65515811fe234cd565507a217c3e33e |
| SHA256 | 8118ab82b1930cb58070777833cb91b538ed7f2f220883c39fea09fef4cde7b2 |
| SHA512 | cb63c88f9093f2a1eedd50f0b0b587499d80198f0cb7494372644ec3acf60ff4cac45a61a5fd526dc1e7b77f4b1dbcb72a861aa6c60df8e1237f2152dd2ed975 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 9f73ec28f23c40c2ec6ae674001a7015 |
| SHA1 | a4ffec3a2406448d941f4b5576047c2eefdc8841 |
| SHA256 | f6253cd546a3e485afbfc2f08bb57525a550441d6c565a6268ac9de65b41d70e |
| SHA512 | c1764799387f5b64b5ace1f8259e5f4ce31e006d8e86fe5ccd9d782b4bae28bffb1d941139d9750ccccbc364cd63c050d4b08a0e2598c89158867d780c75bee4 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 2dc243246164b20553e982dd140fe74f |
| SHA1 | a3b4f9dcbed0d04c142fd4bcb2486bcbb048b0fc |
| SHA256 | d8fcf09a9b97b7fce43f4f78fb463817dc61e941fc7c7ffdf6483503c1c254ac |
| SHA512 | a5ef14619d949b2ad2bac8b068eae90801d090663f76a6b4f5ea630449e3b656c846a36e5236ffe71c7e57fe18036d1aed67fbeea0746d16026f66c9b27aed4f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 6a6b000c63a8b7ef82945f6ec92a2ac0 |
| SHA1 | 5c4bf883c2084ed356d0ec4b767061f638b08f5f |
| SHA256 | 88e4fc8c392e939784ded4af228cd76e8468946231f274839ba423fa9b035812 |
| SHA512 | d9c945dd11c1ff52379e4ecdbfb4881c259ae22ccf9014139182fd1de4067aa16783a94788f73195fc859ed8b6de32e6ada27b19807d29752d745c68acb0980c |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54TGSS0\ad_status[1].js
| MD5 | 1fa71744db23d0f8df9cce6719defcb7 |
| SHA1 | e4be9b7136697942a036f97cf26ebaf703ad2067 |
| SHA256 | eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 |
| SHA512 | 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54TGSS0\embed[1].js
| MD5 | 14d69fc9da4a63c8ad5013b3d3781842 |
| SHA1 | e0272f8403d95fd27df22dff5fc014e2ab5d8a3d |
| SHA256 | e2a5632fec9da56d272ccdea5ecfa7000dc70659673c52a11966802e37a2140e |
| SHA512 | 0f85c67ae8969570f6cfa4d265013da7d4820ea11349b11b886d480d7d78df5c6aa1e7484724d6b21421db18678d22bae6d478d3d0e35506673fd609805d1976 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 30495aa31362eee4141fb1c9c1777b07 |
| SHA1 | ae897dac063a6b836bb4f42656a905870ac1d0f3 |
| SHA256 | d495117704255794ef99ef343b64acf0f2b46a18b972fb3a985b9fbca7b049bd |
| SHA512 | c23961abd30e835f766c2de8fe7bbbd9ce701eda38f9902f9ea5b8bd8037d0932cdbdc6edc4f058eac3303373d2827d8952633eb6bfe05318be3f296daa2f77f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 82814224535a7dfc8002c8bc7b177f23 |
| SHA1 | 283f163c0467159cd486e31e41cba54d5ae6f586 |
| SHA256 | c8ae46cbbb8eb3b6d942a5ca4b8d18b4b2721a7bf3ba1aa2d5473e308853b1d5 |
| SHA512 | 4daece78eb1c4cbc09a2fad784ce23bb13c4d76794e0bebf2c20f3e1bbc9c9b2b1826daef9567ece52cd52266d10c88d1e3163a473886e98932a04a03eeef0a1 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | aaefd1c11c238e1d54f2e7a45e59da68 |
| SHA1 | b7c04593e7abca66aa0459cae2639c8cb8344a91 |
| SHA256 | e4f3cd77946ad27979c940f28e17b4c25e3178a5c8ad0f901b09c1dcbb1d6e54 |
| SHA512 | c66d746fd669b01d2e365a6988ecd8becb834236122050ae0d10a0f0a715501654c807e9597ae5e04cc0b91a14f701c5dc17cedb53bc231dcc6871a25610ae8f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 93b8c75d6f5bdd3467a881cf19c93d7b |
| SHA1 | 32d5687182045398f001715bd47cc9f1efddeb58 |
| SHA256 | 5075d94f4ae945d2610217891f0c2f8a512cb6cd7fa024ad1afb46e39cbad7d7 |
| SHA512 | 6be972d0546434c02acba10a0f63e9ff6a135e0c92f03edc8c15ed6e9d2729655f6b4cd350e30ccf693d200af2e4804ac5116b7f18b0cdc9b420ed9cb17d3ca5 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | d9507ba96dd1b717b646c93ce5e3ae14 |
| SHA1 | 7e92550637270d9205a888b3baffc68ebec7ec62 |
| SHA256 | 968eb827c1ee25ba66d69098a1f0486d876762d5ea7a8c2c81afb37e5c2b8f1f |
| SHA512 | 250ca7318bccc2d17abdae2cfeb6de63ff1310097917f846b595c71e57b42e0bdaa87c394cee8916a32b7509111fbc1087d751f7f6c94ad0c4530f9084616e45 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 30f3a6891e28c41a18157cb424a37466 |
| SHA1 | 666a15cc644c6a848298d95e2a825185a6d11f3a |
| SHA256 | 3a9d802c2873d670c6fcdee313e8dcfeb88c8670e73b163d13d6773f537a19a3 |
| SHA512 | 5b0e89a7098c52fdaeafa35b5159ea810a1562038d10d43b0b134af2c753d42e8c077f02cbf4bcfbd562085d63d8b3873327ef0d634008a2a1de0e3dfb6feaa1 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 2d852c1d259f9a76bf5811b16c343ea5 |
| SHA1 | 36a10832b895c5f13ec26285c09b33ee48b60c1d |
| SHA256 | c3d0d5219fc538658166a73dcae9848861acbf37a2545862d3efb259c27cf5cb |
| SHA512 | c071ade5d0b182fbd117fad3fe28d1884c61c145a2362545c3277e3afb1d10670fd6c25212435874f3634957f99c3c9e5a620af850c93692f6085fba93bbef12 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | db4003d57d016714b3104ab665351648 |
| SHA1 | 87f2952d75f7c537d391d4fc52b1c28653f553a2 |
| SHA256 | 205b6de8631f0d059663d061e9d8b91f43d4ab60683f5866f389abe7f274d129 |
| SHA512 | 0fb129440e8215e297f07daf7414051904c8fc8621f960eda4e0444d90d8e2814cebc4baff54a359518e362c11d3437f8164850b26639d28dfc6bae1cccfd02f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 8acea9c3c80f7726c9acaf70c11711e4 |
| SHA1 | 072c8035e6a6d3cc91f76d6cc9d83d198008273a |
| SHA256 | a1b1602cd4233dcc7d495e15154ea7a08d6cfb5e4c29dc3fb2b910c5d768dbf1 |
| SHA512 | 072aa7d5e6b5fcc269c99b3a48e05dd19057a9ef52ede84333cee38826a7c60af3c76cb75cb207999f6d031a7dd983b1c44827cd46dc0b7da292039042c84fa0 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | dc2acce652960fdb329bb3432babd9fa |
| SHA1 | c15fdd4bb2be311c126ada2ac7523ae631fe8df2 |
| SHA256 | f0e8b67b93731d867183906ed6437a8b4eac12c2a4cd390d9bac170f60d6b96d |
| SHA512 | 71a50d59a3159c3cf2c6d4044ca0dce988675d2ada2d0d5da0debda98c72a1f392257edaa49eab8c3b88649bfd681320140197610129fe4896bcf531639a2d6d |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 7640bcad2f009eaa48d178797a13bbc2 |
| SHA1 | c6c7991ca49fe6d543e4e334c49b28b751754224 |
| SHA256 | 30e47f6a89badc619f5ba2100ed8c9877ba5de7058a30b52bf83ea3a383a872e |
| SHA512 | f8994e781976b899cadb0647e31b0d17e535bb3e91df1538f04c73375d6b1b68000c68a26f80552387821dcba67a9598688f32d4c76b6c59222ae245a814b621 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 23700339405241684280644369055920 |
| SHA1 | ee290f988ac98d28cd5c4a8d9ec47d3eac92665f |
| SHA256 | 38cc9661c7471647741c67ca9eb6757478b90484bdfd0224b836c0f78824b007 |
| SHA512 | a57aa56c3642263eeac4887efcfe1be4ebcd2c0ed5549ee5617127475bd3558d4a8da9d9a375977ce11c1b1e238f8a38b8f403e2e7067a372654d0ad8e318164 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 76bb82b6fd5b6da06900b93266013427 |
| SHA1 | cdf8569966859bd1db8a85859549abff3c994e6f |
| SHA256 | 542478542dbc59671d9728448f3a64745245f6848c0116ad466f571ae3acaeb0 |
| SHA512 | 3e9bebc54c39a38cf9401b90fdb8cd48415beb615666bafdc10101bb1111d746698e156a30276d4e52f219157fbf28e4aef31da0ae6fe091a0959108e65cd120 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | dae8103428fa5af7cab515dff29d0885 |
| SHA1 | e838f0de2a451042be67e06279a666baf3d67b2b |
| SHA256 | c938605cbc758d418191157524a3e7efc4f122d17f7842ae932073ed792cb1ca |
| SHA512 | fc279544ac50bf0eb07f6387e490b3080f517e2effeea3eb3592e8cbfdddce4ff284dd6040a15ee5bfd7547a3347a4b16e92f0b1cebebe85b36e1e342dbe4e6d |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 22dd7a93d81fc3a582246455e6ea2804 |
| SHA1 | 365d5144cde29853235358d17f181591a01c6dbd |
| SHA256 | 9b172dbe72b733582974739dabe3c9f8a47dba8f84ce4ff1ea3f31fa9e3ce52f |
| SHA512 | 4268966f8ca5e893d3f028d6a76977e85dc73b6a24132211b79b750dfe673b695a1fa350b4c353a8a4b7f62feff86eb4694c9f0e49aeb4c679f5232b87760220 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2db5b8ea22566367690acc28d117497b |
| SHA1 | 788af7551bf0892a4f085d41a25ba2ddcf3193f8 |
| SHA256 | b5600cac2c86fa14751132678d7154433cf35703dd9b6bf51690f13e7bd0fed1 |
| SHA512 | dc1013b79b64b0371b2c18393200a2ea81182f0ed66476b802b90601af5049e92906387039ceaf0a89517c121b9f36f08dbfa532d1fcdc7c77bca205e62a13a8 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 8b9443c450c5adc59a73812a3f2f1d52 |
| SHA1 | 1b33c1db12d6da572e9bb63c73ad76f3f9e488fc |
| SHA256 | 11ff10b78f3d968adf6b0aed5a91e4930ab919c46bdfd5c9ff6f7ccd4b25b234 |
| SHA512 | dcabf99bb6d32c881adb75e16d1ce8e920573b6134f703dc1fd463e649020327942997405f8848b9d693d305a6cbab567ae7aa66e30714f95292f4657b143de2 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | cc9733d12a0b8346e57e9befe26cab6a |
| SHA1 | c01f674acbf0d3b791d2b1e9bedd05bea55f56df |
| SHA256 | 46ece73c77397156fc4fda067840b9c6cf3be7ce4f04a1e9bbce364e3ed4178d |
| SHA512 | 2751b88a993073470f7c2b868228889939561a1afc0c037d93a9101d7f0b2e2492abed41cf76ae35e14f18645b6c7ff115ee8226522aa5126cddf08ada8a65ce |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 12c3edcda9fca151b9575526cd50db01 |
| SHA1 | 75f410889f658ec9214867821d293f856e02f547 |
| SHA256 | 990751fee207a71f002832961fe3a358a1f3614867bf521cd763276a0cf366be |
| SHA512 | 7b1e9a72b8b5227e0a1abce85f2aeca6830f1b96f2d2a3abde712cb97a54ea3281f8a95031e23f455f18d5d2329db32d373871d8332c7ff12c23c340e7021bb6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c03386f20a5a30bfe8b6016afb0240db |
| SHA1 | 195a575bcf8b500abe44b26ee8d4b4d9687038a9 |
| SHA256 | b7e16a03b14cbcd048bf7528770dc4f3acdf4679a5b810e7e8cab49da0c4d151 |
| SHA512 | db9e9933e7bcdaa19fb126f18d53f121d838865099df1812da13a5af0694e3c483c261cc8a3343cc7573c851d85a33a6a900a4af1ee4dfa0b88900b7679835fe |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f2d70d00e96287b18e87bcc523716116 |
| SHA1 | 519c8b5f2f9df92b4649b4f80dbb18c0997e5afd |
| SHA256 | 41b7c7b52b34d8a6ffea2c8cb48e246e15360e653ae9b213a7e4fcc3fe514789 |
| SHA512 | 9c7065c70da7cc8286dfad89f36165d9c248bbadc2659767052bfd1c2369326f312f494b44c486db6e5681fe053aacd497e071aa7dbcabf3dccda0b6d1c6bc2d |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 959e3425c39eae43ce3f08773afe7efc |
| SHA1 | f83d2e7a2b79e29d6cf559fb2614447156c4f0eb |
| SHA256 | 616a504a2090dcb25db6c94b5f1b90f464641997f8134bff89c84fcf8fff492a |
| SHA512 | e35c1382cd211b93e2d49214364e984989c472c638a2f37956d296d70584939141fdd5a2379ad0fc0e20638ae3680f66f5fd4647721a530f6f88c595fe991326 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 0a69917662bc396d34c0c2262ed2556f |
| SHA1 | 7946c841767cdfb64ee763a746702ce7fb5a3bb0 |
| SHA256 | 489bcc1153a07ac0de499430d9cc6f3b93b8ed609a106459152577eaaec68950 |
| SHA512 | dc521679ef01cc7ea5b984962a75aa0f97926f859a9d5df5bd49848e77f2c9c901553fe7d9f34d7da99089381286562fdafe651aa6a7c8ee19dc46be8bc52c91 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml
| MD5 | 3e8407a4a8e2e914c61980dad92c65dd |
| SHA1 | 1d026251106f0f2ef4f2308e7b9e5973a002124b |
| SHA256 | a78b267cefc49a090dced93e780b83aa2957a630877086179e5b7abd2722be1d |
| SHA512 | 60ae55e3639a0f2edcdc179d7019250470c076abbcbc3ae98162e295a4ddc695c771b0366cf034dc82cfcb3f05b1c15864af9ef0633f7110af3ea029259534f1 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 52c3dd97a9d2368c766b3c95859f484c |
| SHA1 | d7329867e9b9adf3e9a7f3d36c467f5cdc6202a7 |
| SHA256 | 31cd0367b2d2ddac60374bfa4eee8064f9295062852ff3597fb5dec6aa854aa3 |
| SHA512 | cdcb393fcfe264f6db5232284dc9ad3bc28e8b36bd62b6b549ba6ba5c2930ced8514ba110295cd7a2dd2bca97d8045e39b12e1c71647a02d9ed951e8c4928a28 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c85c31615cc0013382007d08ebcde2ab |
| SHA1 | 6ffd19102c0dd2bd7d52fb1223d29bb7f4d6de4a |
| SHA256 | 5fb65ef7bf4a55cd1c0a55c0c07a2eb1628eaf5c19b147cca6f32201c77a11d5 |
| SHA512 | 0a8dc83920b47d88e5c587ce12f36080651a02e87a3cf4fca2ca0cd3c28923691d498f4eb6dcf24fd21f0c75c9a84a3ed6bde07c1b36f7e1682a15196433703c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 57fb33035f87b0485f2008d497188482 |
| SHA1 | 5e6d4bdcd9183ace03357f3ce1b3fa021055ef94 |
| SHA256 | a8b192576d562ecebff09d187abbe164f862ce6b092005da54a8796f303ff2b5 |
| SHA512 | e09922f30237f7681b03ccdefb5154ef33c8eac8a53213a0847ac23f4dfd90a5764a6ebb324deab282c84cd41ef886a525be29889fe4439c82f27d3fca559f0b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a6f74513addb27c0a5bbd964173a1f28 |
| SHA1 | 62d7a256644176438ca6e0ddb3330c6f0d29b583 |
| SHA256 | 635d7bf93ae83594a96e9337c6916db941f2d38c116a76aa685c052786f4f2df |
| SHA512 | aa150450e4e8e405e555209a68929890086869c35800ad9eee5b1e70f8dad00bfca8f4b030f31728e7eed4c10b4ba71bd7fea0fa9f0694e10654631d27fbc697 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 95a4b57aa28c6a09ad63fe0475b06c06 |
| SHA1 | 7bffead00dbf2723cc15ddb82f958a2ee329655d |
| SHA256 | f0ba525941097005ca0e3b271a95a03e5294f5b23752b576a3d398e3328d694d |
| SHA512 | 50f378d0d87bf500ff73ce1c38f510bfb4a98df2bffd03c25aafe0f74fba5d2b56a8dd51e6f3121d54267e78b884a36464db9be37c1a75f552021e0b6d32e53c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 90726836f58bd6f56cbc2c9b3ec16de2 |
| SHA1 | 413c7ee493bd3b3e410a444484216114c417d1ce |
| SHA256 | 3150d8b726d976c5d6a38e0cb42b1cbdb0cce73c4512a1d942ee22514aa0618e |
| SHA512 | 42e1889d8912c2e902fb7f056bc416dd731f6c1aa2c2b7f32b7914c49341ae1a89c1b6ff28612da840ade5b20dc97132d9207a6e77af62fa3f02c16c149e78df |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | e15f273fd8bf4a19ac169bebccccd291 |
| SHA1 | d6179caab459e0b826d2a15d83d9048678b5b787 |
| SHA256 | b7156c40107a61f5cd0895d2b20ef7142254a8acef46b2f0b80947ee132e592d |
| SHA512 | 486ba8baf166016f1950a439a561326934fbbc7c02cb08fd2a5af1cc7ef629accc87ad54052f7823a21079b3534338363cd24571c3af5af36ccea1aa1e6f6a81 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ab03cc1bdb55ad00eb664e37298b8956 |
| SHA1 | df1c6e21e2aff68adc61fb0a9882ae77f5ccfd5d |
| SHA256 | 9bae340fe57208741ccd3149297b0f2c10f2bbe5830a012b7447fff39d928698 |
| SHA512 | dbd5637649fa20b1e81558cc5f00314115bd6537df3f4e4e368f86cab6b53f03d79c84bc9e777e3969b1a3da290af14f5a0c9cfcb6b1443f5b14addcc2c73e6a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 0e26fdd3548376f026c17d1e6774cfe1 |
| SHA1 | 4b79b5652e0d0556d15e19db705b548f9a514616 |
| SHA256 | 798cf96734db8be669a0a6049e3ace6560be3f2f10f0f82f04c986c592cf8ec4 |
| SHA512 | 3a28502a06cbc133a44f9c03c08bf25b4935968216e204417dca67441bad3500e0258d7ae8e1bf349434434ae5992bde336cfb1fa128f03e1af6d85889bb74db |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | bef6611a9052445e180d7b2515469c0f |
| SHA1 | 69473c627a4aa7bd791d944b910d415412c366f6 |
| SHA256 | df6aad4d7309bfb2c6648fcab5a805f614e74f28a6b76a62d0552fa84a3e28ef |
| SHA512 | 1296427f8dc440f4eb4265866c86b60b98b7093240e8b672d2187a09bf0d265f89a510b431f215c8730d84e876444251f33b41e915714d1bf7075ce4b6d774d7 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 02:41
Reported
2024-06-13 02:44
Platform
win10v2004-20240226-en
Max time kernel
144s
Max time network
156s
Command Line
Signatures
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a391892974afa0633d15a94b5fe4b471_JaffaCakes118.html
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=3868 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=5364 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5596 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5436 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5284 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=5888 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6044 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=6172 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6312 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5448 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 76.234.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 13.107.6.158:443 | business.bing.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| BE | 23.55.97.181:443 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| SE | 184.31.15.40:443 | bzib.nelreports.net | tcp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| GB | 13.87.96.169:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 13.87.96.169:443 | nav-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | 158.6.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.97.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.15.31.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.187.238:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| GB | 172.217.169.22:443 | i.ytimg.com | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.187.238:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 35.214.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 8.8.8.8:53 | 209.205.72.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 144.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | nw-umwatson.events.data.microsoft.com | udp |
| US | 52.168.117.173:443 | nw-umwatson.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 173.117.168.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.219.191.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 194.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.221.184.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.227.111.52.in-addr.arpa | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 97.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | chromewebstore.googleapis.com | udp |
| US | 8.8.8.8:53 | chromewebstore.googleapis.com | udp |
| GB | 172.217.16.234:443 | chromewebstore.googleapis.com | tcp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.179.89.13.in-addr.arpa | udp |