Analysis Overview
SHA256
27bcb80a904199ef89c15362b9c8e4ba9d34468cab2b061fbef2b1bb1f9d9d07
Threat Level: No (potentially) malicious behavior was detected
The file a5ce48556bc2f0eb10bb822af73e2602_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Modifies Internet Explorer settings
Suspicious use of FindShellTrayWindow
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-13 13:33
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 13:33
Reported
2024-06-13 13:35
Platform
win7-20240611-en
Max time kernel
147s
Max time network
146s
Command Line
Signatures
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "2894" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Zoom | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\NumberOfSubdomains = "1" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "197" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 30f0b57696bdda01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DomainSuggestion | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "19567" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "498" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10878" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "400" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "17164" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "197" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "400" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10878" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "498" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "288" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "19567" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8670" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "2812" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10878" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "282" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10796" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "115" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\PageSetup | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "407" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\IETld\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9791" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8670" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "17164" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "18059" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "492" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10884" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "9791" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "492" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10884" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10796" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9180" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "6" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8670" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "2812" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "18180" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "400" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of WriteProcessMemory
| Description | Indicator | Process | Target |
| PID 1688 wrote to memory of 2632 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1688 wrote to memory of 2632 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1688 wrote to memory of 2632 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 1688 wrote to memory of 2632 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
Processes
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5ce48556bc2f0eb10bb822af73e2602_JaffaCakes118.html
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1688 CREDAT:275457 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 142.250.179.238:80 | www.youtube.com | tcp |
| GB | 142.250.179.238:80 | www.youtube.com | tcp |
| GB | 163.70.151.35:80 | www.facebook.com | tcp |
| GB | 163.70.151.35:80 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.179.238:80 | www.youtube.com | tcp |
| GB | 142.250.179.238:80 | www.youtube.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.200.22:443 | i.ytimg.com | tcp |
| GB | 142.250.200.22:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | fe0.google.com | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
Files
C:\Users\Admin\AppData\Local\Temp\Cab2898.tmp
| MD5 | 49aebf8cbd62d92ac215b2923fb1b9f5 |
| SHA1 | 1723be06719828dda65ad804298d0431f6aff976 |
| SHA256 | b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f |
| SHA512 | bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b |
C:\Users\Admin\AppData\Local\Temp\Tar28BB.tmp
| MD5 | 4ea6026cf93ec6338144661bf1202cd1 |
| SHA1 | a1dec9044f750ad887935a01430bf49322fbdcb7 |
| SHA256 | 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8 |
| SHA512 | 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | c1ddea3ef6bbef3e7060a1a9ad89e4c5 |
| SHA1 | 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966 |
| SHA256 | b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db |
| SHA512 | 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 931d4e29e9e82f3b22194d86e9d5169c |
| SHA1 | 404ae4be28ee18f99952770b2d3e4587d8582763 |
| SHA256 | 89498f1be186f1a39954eff9c02bbba3b2facf2dd69b49eb9ab253a551182452 |
| SHA512 | de13c526907e061d61cf69cc2e6a8dbffd1b14a2f089af531db50161979bd68166aefda9384b9c7ab7381cad054ffc930a9a70c3dac773962ca5bcf5a4d47edd |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HWTP8BNA\www-player[1].css
| MD5 | 69958caec43c10f1d36a71ce83ac69e8 |
| SHA1 | d363274a0f568e4bfe98e978eae59441fc17a1fa |
| SHA256 | d24493147c49a7b5d1a21c66aa87d11a0c976cd4e9392b89add880139aa2b1ff |
| SHA512 | 8a57bb5c5a1f7a91057493bad34133f7a2da0b7322ea84638a82e4df13045a584b11a0bc5beb90c018e9d5fecd323bc73cb35e2c322804ddd74ab0e4967bb84a |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HWTP8BNA\www-embed-player[1].js
| MD5 | 8940a491297381a0ce25360e21b39bb5 |
| SHA1 | 43d7a4157e78777fc024415969c3a7bd550a4322 |
| SHA256 | afc766cb1c4a339c40d24ad926f05e8b4927eed7532b876291d0bd19adc9cf3e |
| SHA512 | 5772d7e7485db888676e69cbaf4c88af01872997338bc61e8e0344d5dba208c2909e167d54d8edcb782e17d1a2b4e9dba955baeb0ad0e43ba932b3bf25ae7dde |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HWTP8BNA\base[1].js
| MD5 | cb463df0a090cdfabc77af2691141830 |
| SHA1 | e3dde6a1f5c4803e69839154013496a781137473 |
| SHA256 | e09e2e8a3cfbcc88eea12d0b17161e1f2c8c75f1bb21100829c09f9858db3f24 |
| SHA512 | 099374f7b03a4635390b94525105884fa101d93a583eed0d92def7d2de3199d2bd57fc63d885e8e9af0863db40cf521d2fb770eb09400a4c6285f7c37ad88e8c |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\ad_status[1].js
| MD5 | 1fa71744db23d0f8df9cce6719defcb7 |
| SHA1 | e4be9b7136697942a036f97cf26ebaf703ad2067 |
| SHA256 | eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 |
| SHA512 | 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z5LT06Y3\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff
| MD5 | de8b7431b74642e830af4d4f4b513ec9 |
| SHA1 | f549f1fe8a0b86ef3fbdcb8d508440aff84c385c |
| SHA256 | 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a |
| SHA512 | 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z5LT06Y3\KFOmCnqEu92Fr1Mu4mxM[1].woff
| MD5 | bafb105baeb22d965c70fe52ba6b49d9 |
| SHA1 | 934014cc9bbe5883542be756b3146c05844b254f |
| SHA256 | 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed |
| SHA512 | 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 0acec0cb76e4adbc381190ffc58fcd64 |
| SHA1 | ef77b4eb8699f7e856c6f26358272c72149577c9 |
| SHA256 | 7eaa85983bac050f3bd52a1e1864fe54fcad79874b41fba590d4d00566ae3b42 |
| SHA512 | 4b2c0dd5f2ceeaff313a9ff13771f7a201d3fd831f519e52f6bdb5caf2189cf391453d6e00e3e092f7b4b2a2d0093681e6596a78dc59b91f3da0a7ec6eb2fb48 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 6f17ff22f99c4221acc933d7eaeb666a |
| SHA1 | aab6ecc5d5cb17833d4923384413f076f5c5b638 |
| SHA256 | b3eaa39476fc73ebc9300fc309127f63274c2d480a2fab36b7f48960b1c378c5 |
| SHA512 | 06b89cb06d219de3a13bba442c303c3ecb762e8e8813326a05c314666106fdb32c33bef99d688eacdf5f33bab74b17e6664c49c5fca5f10d7212d6a8f9801780 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 42fef8bbd961161b8e1a2d1b4eb8ec2f |
| SHA1 | fef855b10a905c516a19a026d4b10e9751f0b08a |
| SHA256 | d204e18419834971c29f4217cf92c6f817f2f6ec1104eec05b75fa84390440b6 |
| SHA512 | eb89c4d98b9adf6ab8cd0c78d633f9e653e839d14db5863d345a79e9b629b8eccbfb90a1d86197c2dcf199f7b4d964a3a9f174cf91970415d55c6d85fe522922 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8DU897P\embed[1].js
| MD5 | 14d69fc9da4a63c8ad5013b3d3781842 |
| SHA1 | e0272f8403d95fd27df22dff5fc014e2ab5d8a3d |
| SHA256 | e2a5632fec9da56d272ccdea5ecfa7000dc70659673c52a11966802e37a2140e |
| SHA512 | 0f85c67ae8969570f6cfa4d265013da7d4820ea11349b11b886d480d7d78df5c6aa1e7484724d6b21421db18678d22bae6d478d3d0e35506673fd609805d1976 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | e01a866aaa0e68ed0197a6fa13407d1b |
| SHA1 | 4a37acf63b54af906837e1303fb95d962a368bf8 |
| SHA256 | 09026221759b1c915a410d909a44f7d095ef9c1e220646e1b22baeadd18dd8b3 |
| SHA512 | 72c5dcdeb4959fe8fbebad512a7cc91773ac1605169d6783ca00443015682572bb1d0702883bcf57a4bed28115b66be96f210ce93cdd71c7eb3c70d9754acdb1 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 3d7798209d0062e7beb8f488f47b6e75 |
| SHA1 | d5ff0c6ad345397fba9180afdc370bdc7ef83c66 |
| SHA256 | a949df6e4e23f369ead681a035a67b82e0cfc2c33edcb3f984c3bccb415f6850 |
| SHA512 | b0aaafaddc76cbebaa5503408c4b21ff663be1a4c892275ffc760d4e647ef055590d75039df9aea3cd907d1a5e88fe1a68fa0bbe388b46cdf74dc662600f7ee5 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | b4c5b1ded8f81ec017e5652f351460cf |
| SHA1 | 59f5c768c615bf8817a522967ae163785635e7d0 |
| SHA256 | 3091a5f2c2048581120ffa2afed33d126f8be1af21dcff038c990b90d8402f6e |
| SHA512 | 430b59c95a532c82a3d4f42f980adcca1d6d8f223a0968d1c09f9c6222e4cbf4fcec8c2a57b31c8d9cfe01baf7d49757bbce35e677904e2be70157c898d8ec5a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 880c2fb70b09e1f853a552cc2a314c8c |
| SHA1 | 1b99195fa471f51b0f26af2f0179110f1eba80eb |
| SHA256 | fb23404634fe500686bbbce6e66b32d2ce95140be5018c76a1cf9be336263143 |
| SHA512 | dde0f9d021ecb227da04bbb629036bfae14561c361ba48b5b49ec90cdcd1d5ffbf4dcedc5bc66371175f55f5482b55cfd1ad4262063c54fd7625531f488d4066 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2c94812074133af33ea32a79ff2733a8 |
| SHA1 | b762301eee4e398c9ab55c3e157f6d33ba1e1d99 |
| SHA256 | c2ababe9de24f4ef945b6af85c5d2045805bc23850b2e62a594e791583fdb04b |
| SHA512 | 97840e5f3387afca9fe962aef5dd78c6ac3ee22fbc217abd60b27e2e1553187e8cbc94d2a415a626d6c2baa174b80750bae51b8e695074fb7b0457608b500e01 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | e6ba602ea698cc59bb400f126061ad15 |
| SHA1 | 87afda4cb23d0e2677beb3e966dae1fba0f87941 |
| SHA256 | 3fc5cadd4b524a44eb5d4dc7da001257ee774f302da1bc4fd0768d66db961ab7 |
| SHA512 | 84630afe13423770cef187ac24abfbe04544cd5cc4f18bdf522cd2382284aa93142e9ab1d494a27ea16f242e8efd1e5ee576437b5c951b47121a948acd5a3c12 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | b748c8c89a39336ba4717358a6fa35c6 |
| SHA1 | 8c7df89a9cdf7f6e78e607ddfb5a855f5957f629 |
| SHA256 | 2e541ddd4a0e23379d9926a9cda88072eb3b6791b88119cb53f26fe1c4055eaa |
| SHA512 | f02104ef0b1efb42e1c3af52ecb15e7bc052fce52f484d444f33466d63df990373e074222de4575c41722d77da297dbf690e38f6a88af172a16cefa765a5965c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d6b2af1ae9d8d965eb0634b959c7ba53 |
| SHA1 | f6079ac62c06003259b28c65164ed9a20753f121 |
| SHA256 | 50990a0c4def4770d39504aa69e2ef25f83cb42ddf6c829cf7283e32ada76c42 |
| SHA512 | adb290f420ddea628033d2ed1a7e2c85d2fed9f0a8445a60e33443a3cfb27b98b27c37d6a6f635c775043ee5ac5b805e6970a45a8af137d9ce20a6abe28a3a75 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | bf6a94220e6a8604ff9a6f9bc740e2bc |
| SHA1 | d221ad9d5c0632510740e9acd4666b565885656f |
| SHA256 | 3a829cc025f615b7d3fb2e20e19675ced89de20a919beabb52864ae7de7fb96d |
| SHA512 | 8856aa9cbfbd48b468f6e0f85248215eae649ff74d843c9cbd3e892789a4126fd938761d24a091843996298a3a4cf6a239ff2e9d44da73992f8f97669633bc45 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 74607e7fdfc3dbbabe02dba2f57cee07 |
| SHA1 | 77243c4bc42194f8cf797a9e7eba18a605dc29ed |
| SHA256 | a1dbf43d76d08d23ba0a8da03431f23b97d01beb0af61f328509d8fee542b25e |
| SHA512 | b405df0bcce69f88c8fd95defffa999cacd8e31e458fd5c5b947313cf4fff1c9d48d3b0ef63370e997c7b5063577637ded936403563de006eb11bafb3cf5f297 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 23a584e2cfab9725c39eb035587cffa2 |
| SHA1 | 0615837b3d659403685e77e9245ef84d11022e4c |
| SHA256 | 251efb4e7e89eeb2aac20280f4e19de43f085cfe56941ea6c4a3770eca563253 |
| SHA512 | 68e696ed5785b3587a2c0c56853138bd9f8ff95a2f4cef92f1be9f7800e8e0d214d61ea6abd12bf90fc26a74fa56d0543650994acd6d49ca458ad66529dbab4f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 36181b177a67aad2e1eac02e919b1377 |
| SHA1 | 40f6a639ea2a2a7ad025f2e6937f7263557df664 |
| SHA256 | 51c8d2bc00b379e3ecbd3d5502ef7fee5a29f9d3ad6731c6817858dc34444c37 |
| SHA512 | c70c426f74714529725907db55bdc51719cc84d2d26fe3391ded75e813c229938c3dcd1f8df61e236a82356936055191340bb664c2ae310a6d2907b1288ee1b5 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | a2379744f753171ae950cedb18456f58 |
| SHA1 | 60021e3607978af3ade3e14f7398a8958e7975c3 |
| SHA256 | 1caeeeaacbe2c89bbd22fa0eac605ec5e75bbb89dd2b67102187e15f60a42319 |
| SHA512 | ead06bfbfa8ef02ec465912b6780bf45b3682b0192e4835eade23fc49adcdfb23156d50f5535cf6673bd5714125fbde49b4615e58de895e44a1f5d24c6af7bad |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8DU897P\57wTYcgCL9-06Mjz4he5vP6_4afBPjLl2lxgmn3azys[1].js
| MD5 | 856cbc9239ad5b22e09262a0772086b7 |
| SHA1 | f85c8823e31ee0445b52eaff81a312bf30a9de0a |
| SHA256 | e7bc1361c8022fdfb4e8c8f3e217b9bcfebfe1a7c13e32e5da5c609a7ddacf2b |
| SHA512 | 9a57544fc353802c2e7b209a025b39a79ee646393fd89ac7d0325940853033fa661a252da81a0e4ef391d0c3b6365fe9f77a6c3f5f73bb41ddc14459c627b745 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | e5167cb3375d7fab2f539174a1cb79c5 |
| SHA1 | 7b4cfac1224eb1d5832180caf6a5c3daa6939a05 |
| SHA256 | dcb46c6f08297a1b017acd447b2d9025461865f9f337007a8a9a326c11b1a061 |
| SHA512 | ced8156b5bc2a6a5302c4c09733f7311e6db0553a50464d1e463143e5073e3da1a4abdef1e79d10f29395fa8f9738f3f7c81b0b65479c14be8477c25517cd536 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z5LT06Y3\remote[1].js
| MD5 | 122e83be4335ed0b6b270ff458ce45fc |
| SHA1 | 4cb88bf4d9efe3759b45d01dbdf258ab8b4147e1 |
| SHA256 | 13bace7cd8fc970632b82a7f1614ffff8f8f9f8dee7d5072d633c4ad5f7cadc5 |
| SHA512 | 188863a2f4c41b81179f8039874f989163a3c61ad4a6d766dc86aacac71f80add476682b6686f8c95f6be031ad78bf5767ca48544aa64ffd303f522888b558aa |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 67225539080191c8b795fd6d11b83781 |
| SHA1 | ad224c4dcd4c3818ff065f52b28ffda466d03e1d |
| SHA256 | b98d6ddae72b96e63870f0f192334019dc85fff1fb36477a1be3cd9fe7e43f8f |
| SHA512 | 2dbe336a24aa4e3de295dd6326c5a05b4e213d012b5cc0a1df2dc9b3c77970beeffad6548e609911fd12dd250c0c4c403b2d9dc2d477650da49417a4d87ce0cd |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 489ef5827be72c08bec2af688aea3978 |
| SHA1 | 084514adc85e8d755c4752f16d005e53dce08e75 |
| SHA256 | d4bb415b2d472bf55b3dadf3949ff6cea9aad6ad9b75b7a1cb5af7c9e2bd2979 |
| SHA512 | 3fafeb9c441b844910f11043227785385c8eb2954a353d0b00fedd40438630cbdffc97c77f47156beb849025c40a665d010ca9019989aebceaf918b4f985005f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 2bcd0c42d48365d9668d8274ceb960ea |
| SHA1 | 70526928e498e1f8873535de51192d9662bc5ea9 |
| SHA256 | 90f3563fe6df3e5f5fbf1dbedf63c0ccc28052a5dadb5f77e21cf3e29f2acd38 |
| SHA512 | 03acd0ee2affb305c844d9439fe52d8ba0fda264d9a4c00e0b602a1d6d8b2cdd816aa82e8a9870cfcf8f7f6629be4b77be66ce7e8903867518ab3a5be5f2f391 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | a6de9f529d6757f4ee9edbc31cbef78c |
| SHA1 | 46c6bc89804aef863d9d8293855601e3932f9cfd |
| SHA256 | 96eb6d73f78f12a1081f1091797b31d80c9ce0cebba161c1f29e1833c6c05646 |
| SHA512 | a89f72655228233e90b26a0576bcec98884bf3362afa437f8f2137150251fc72e43b710e3327aa2045e6a95c704d2eef7ea9e62d4caadfba3a2a09935695c104 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | d6bf82ca8ef37fde79b9f5b7df3a9655 |
| SHA1 | d6f8966503f3152af2fb7b33f9402beb6eace512 |
| SHA256 | 7d0ad39b8f18e28f07e39ad0109660caabbce1998383cfa94ac00cb3db4b3553 |
| SHA512 | e699b97c106f4912ffb8fc35a965b9631df0cd2829a7416163c3a693baaaca8c8fb00e832c5efa187103b9617e0705a8c9b16c9be2032b2e7c07605b50d68b27 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 6b0f3dde3b9feef7191de94f36e95c1a |
| SHA1 | 5ae13adcbae849e0ff63e5d5fe494d72ab5fcff3 |
| SHA256 | 6408ad10b6b457f62b76d9923d5b053a6072be69b4f7e81c9df4d594b42d707c |
| SHA512 | 1061bd38f7f0eae95f382c85d340e07328b5f3693e467d68c81e7857b2f0ca216cd8e8f2230bd1eb5b712629438cf55cc7d22a670dedc971aaa91217d017c8ac |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | f7414f1656020e6cf97f1c2b1d7d8434 |
| SHA1 | e6cf1cf541262067846545d76cf4ad64e8a86bca |
| SHA256 | c83a755f8ad39071728056095170d4773fcbdb154bcee9ba0c13885b956943e1 |
| SHA512 | 023587540c143a103750db9983451bbfde507728c7ad5c311f38d0fac6085818f33bac4eb6379eada70f9afb03382feeb02e85bc2ec48a8af1eba02a50e6dc87 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 3abc190a04d580807848e0c375267ce2 |
| SHA1 | ec44a1094a537cb6f6f8578657ad56af4cdacf1c |
| SHA256 | b22841496f25304d88abb825bf92bbf2462173cb3f96844893cc0f07a52328ca |
| SHA512 | 7fe9f6d7911b27636a2505e294b17c5e12d0c56b0a2392d25c3f79cf1456d11d69aee86d8562dd12da80386e549789c195cb5cd6499a46efb040724475af1ed0 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | 7457155c1c9c8422fb585b42b8e3340d |
| SHA1 | 56707e4d5297812035fac7f314bb68c4331fe302 |
| SHA256 | aefa0fc7df830abb6ec000b4ade38ae6b91fcfe9408e91f22fa2b27703cbaa5e |
| SHA512 | f09a2a2d65ce37a97117f5318bb84d989f1efea41d4275a1d77b8adf8a14c4c827804815d00759745635d0c05908eebcd99814048aa08ebafe1eb7ca9ef4fbd0 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 6e56c73556866bd6fc56cf109aefb43b |
| SHA1 | fdcfa62d6ea9f72241bd944b1ad4ba5cfb41b876 |
| SHA256 | 672ffbf3eb651b28e3db8bb5e8d1472645f829845b57aa4ecc2930fc6a13662a |
| SHA512 | 8862eada9940d44e03adea2315df649d5e3354227bf7a9f38a019e59a3104d556f05b80e2b9e32ec0e267859c50038939a358c7767139e9a77053ba6549dad99 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f395ab107591af0b0d09ee2174da2c1f |
| SHA1 | f10e9290bcb78c3f7524afd9a3ea581755e17f40 |
| SHA256 | 7582183903d7b51baa6f6100678a6591605d2e56a4b8f49162021e0b75fa53af |
| SHA512 | 7528ac4cea214bcc6b5e1a78d29d8c26c0925df3fddde87b7c61ca47a9bd06447e7e29118dbe99dccf399bcb857bde89c227bfb6ec0eea56c867de6f49ce63fe |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f194172eb630aa7bf8ea7593a41ef32b |
| SHA1 | 53dcf53cc53ae6b5512635abfe5b60d165e914c1 |
| SHA256 | 4d351d9fbba6e384f1c081297fa9aab1116e13271ea75466a3fc2e25b5542534 |
| SHA512 | 56fd7f8902fcb7ebfeb069e56b64f2ca543ff3266debb2d1106adf52679d8ddbd87b9c4774181e9b09e17286d67b382415b86c6f2c19324790694c40b41a2517 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 11cc34d863701490e0bc356d2608b4c7 |
| SHA1 | d9943ed8bc600db91f99a3bd4d1e76492267dab5 |
| SHA256 | 17c3a506e63da16a2b33fee385465da5446599b72503d164c4be7de61d1b8f10 |
| SHA512 | dfdd67c725e859ca2925fd530946a387646ddb10057135827bf674c28fdb0b6f67b206f9a71ef5c4dfaf0cc917a49bb41953d6da6fb55b7b5949d5ef65e9b9b4 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 0a8d6619e265078ef0aaaf09bf9fdfd3 |
| SHA1 | b155c4ecf1b29d1cbc8b41d19b622f374ff123b8 |
| SHA256 | 38c8d2517185ff283aa16c7731c16780da7fd3db35de9645df3a69e2a6e523cd |
| SHA512 | f392fb85bd04fd9827ed6fd970fdbd29097b365f4c3585165d6e6a89f3b839a1879a409cc55f4275914cdfb81fa215f3c27e180c6fc38a9475319fb1e632205d |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ddd8962468c9c3cd1dfbb47c36c0fbb7 |
| SHA1 | d45a3a13c1e133b5ef4a5a3adab34a94d2748d0c |
| SHA256 | df66f110e36160c3a6f8d1c7e6febef115dc61ae1f50006cb7f601a7fce71264 |
| SHA512 | fc7acdebbb3f80f5b4dfc1212f669a3c6fe453f8ea0c29a18fb23037f71198e7a711863e78835068559c96ae2417e7f197abe251d3560bbc5300a39f213ea474 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 32deb388b93c9098de8b2951b6de6be8 |
| SHA1 | dcaaa51cd8edd6b5735a8313e3977f1ed27af09b |
| SHA256 | 80f9ca60accf7e0d121fc1ab94d45d85f2130886efbd711c0cab373ce3e55a22 |
| SHA512 | 1e397b0b26f0c9e8bf590b575debeb91cf989341a4660447edead2a506e4a830262b9e9c65ddd036ac9a9c0c7b3ff57b9f3bba5f255d2b4370129588a6cbb70a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ce14f956fba1516b33b72214d04bb349 |
| SHA1 | 4cd84f497f24c188104a8aba6934c0dcb9594421 |
| SHA256 | 82ad98a807ab809b12246bdb3fb22fbe1a5423bd05ee66894e6c67657642a642 |
| SHA512 | ceb528c1fa08e6c9711ffade7b2a4d260ce8ec94725ee23a27582ee606a5bdbfc817b784e9dc2ff8f3501a497bc2f9e8e87ea7adf83f48785c58a8fe7d1c9093 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 77dc3f92f5db2a2bf4670f3ba47b2562 |
| SHA1 | e7b35bd87e2fddb5e4cefd0ef1b5725bf6c9fe36 |
| SHA256 | 901781e61378052486bcbac55f542b010d45d5a615844668759e62b57bb95023 |
| SHA512 | 852aaa6707fef52bf4b3b8d700eb9d8abfc051ae33e90c146cddf995d14073cd400fd6cbb992cbff8e5f0657a91932af7de5f197656d01aea45f18d3f47507e4 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | fb55a4785e5455d9bf3cc4df995b2bee |
| SHA1 | 2fecfb25a71f663fb3bc5eb448878a79178660f6 |
| SHA256 | 726491d2a2159c20218846b5732a2b3e356a63b190c9b8c32273efd43c774345 |
| SHA512 | d3f4ffb0ed94f568054492ee12c5885a121698367f5e72a31095665582f6c24e4472529f2e033ef4c8277344a20e0278d197428bac0c5eb12e31e6f873fc0cf5 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\43XNS8QJ\www.youtube[1].xml
| MD5 | bd30cb7737abbd9cf2007de92dbe2d74 |
| SHA1 | c803c18c8c4854ddc4fce0b27b1b6def8d9c9bf6 |
| SHA256 | bf5bf43099a02895662d57c19f9b9b15643990304d2cd93e6c04b2aae35b29cd |
| SHA512 | b6a551370394747ac76183e8b214afb31629b733692fe53084ca538b318e35f72d2212e2d20fbe08e7909ccdb65e86cf54d90213534c4b4378351c5a08f15171 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 13:33
Reported
2024-06-13 13:35
Platform
win10v2004-20240611-en
Max time kernel
128s
Max time network
141s
Command Line
Signatures
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a5ce48556bc2f0eb10bb822af73e2602_JaffaCakes118.html
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=1056,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=3808 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=4504,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=4800 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=3952,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=5316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=5464,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=5476 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --field-trial-handle=5484,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=5576 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5312,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=6000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=5996,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=6136 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --field-trial-handle=6300,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=6320 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --field-trial-handle=6252,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=6520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --field-trial-handle=6660,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=6036 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --field-trial-handle=5708,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=5712 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=5856,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=5788 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=3852,i,6041070687820623968,3004230300437737550,262144 --variations-seed-version --mojo-platform-channel-handle=5540 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | api.edgeoffer.microsoft.com | udp |
| US | 8.8.8.8:53 | api.edgeoffer.microsoft.com | udp |
| IE | 94.245.104.56:443 | api.edgeoffer.microsoft.com | tcp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 13.107.6.158:443 | business.bing.com | tcp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| SE | 184.31.15.40:443 | bzib.nelreports.net | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| BE | 92.123.52.36:443 | www.microsoft.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.104.245.94.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.43.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.234.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.15.31.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.179.238:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 172.217.16.246:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| GB | 51.140.244.186:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 51.140.244.186:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 51.140.244.186:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 51.140.244.186:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 51.140.244.186:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 51.140.244.186:443 | nav-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 36.52.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 246.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.244.140.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | 64.253.107.13.in-addr.arpa | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.180.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.180.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.180.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.180.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.180.10:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| US | 8.8.8.8:53 | konthaiusa.com | udp |
| GB | 172.217.169.46:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 13.107.22.237:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 13.107.253.64:443 | wcpstatic.microsoft.com | tcp |
| US | 13.107.253.64:443 | wcpstatic.microsoft.com | tcp |
| BE | 23.41.178.41:443 | www.bing.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.22.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.178.41.23.in-addr.arpa | udp |
| BE | 23.41.178.112:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | 112.178.41.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.236.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| BE | 23.41.178.83:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 83.178.41.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.117.168.52.in-addr.arpa | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |