Analysis Overview
SHA256
b80be1dabd2f9c8401782cad770fef266333d0a5fb52c8bec51e5081e09c611a
Threat Level: Likely benign
The file a8e06cb5b27d7de0b15b5a8860656b3b_JaffaCakes118 was found to be: Likely benign.
Malicious Activity Summary
Detected phishing page
Modifies Internet Explorer settings
Suspicious use of FindShellTrayWindow
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2024-06-14 09:05
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-14 09:05
Reported
2024-06-14 09:08
Platform
win7-20240220-en
Max time kernel
140s
Max time network
143s
Command Line
Signatures
Detected phishing page
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000061c90db4957a2f48b43cf8af59f8d2200000000002000000000010660000000100002000000037feef17135b2e65a32fb60e505a86d8d2e1668d6739fc097d34444d2534c3fc000000000e8000000002000020000000b524d439944f7ca70f20b6fbe18787dfc1c86b65c8b89a32caec7ba35e96505c200000007f6a0a77d4f7f60588183db882198ebbedccf666906a09107edc3d9729ff2b9d400000005df2499855522187a1bd305fa02df579f15d796a28f613e73a6d430aa9a13e57131449149b52e08f8a3237a16ea3af781178f8b4824ce88dd5af0ad05fe1b6b4 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = a0ac19293abeda01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Zoom | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\DomainSuggestion | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\LowRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{524773A1-2A2D-11EF-A5A7-5A32F786089A} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\InternetRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\PageSetup | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Toolbar | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\IntelliForms | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\SearchScopes | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\IETld\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "424517829" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of WriteProcessMemory
| Description | Indicator | Process | Target |
| PID 2932 wrote to memory of 3048 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 2932 wrote to memory of 3048 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 2932 wrote to memory of 3048 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 2932 wrote to memory of 3048 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
Processes
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a8e06cb5b27d7de0b15b5a8860656b3b_JaffaCakes118.html
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2932 CREDAT:275457 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | www.acaprensa.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | player.radioforge.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 104.21.53.2:443 | player.radioforge.com | tcp |
| US | 104.21.53.2:443 | player.radioforge.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | maps.googleapis.com | udp |
| US | 8.8.8.8:53 | static.radioforge.com | udp |
| GB | 142.250.180.10:443 | maps.googleapis.com | tcp |
| GB | 142.250.180.10:443 | maps.googleapis.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | e5.o.lencr.org | udp |
| IE | 2.18.24.8:80 | e5.o.lencr.org | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 108.177.15.156:443 | stats.g.doubleclick.net | tcp |
| BE | 108.177.15.156:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
Files
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
| MD5 | 8abd3c2cbca617b74d00a4453619354a |
| SHA1 | 80e2511c2016b164adbda32dfc8231fd18d30299 |
| SHA256 | be3bad44ae8d54fa1f62204b2294566b718a37ac74f8ac81baba7e3f0a6a1d11 |
| SHA512 | e2f91b9af029cffa19b4ab284ab56852dc57607077d3ef942ec3761036247049b5e11a6f110106bd6a8453a62ef460bd67fa369660ee9309bb38621a7fdcec8c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 17e528c1d58f7b052521bac2a7b0c37b |
| SHA1 | 71b92474dfd09e3170c1ccf5ade1273e779fa15f |
| SHA256 | c5a90f48a9477ed8ec2cd3b3a9143025cdcc8cd6973d32973d13daec2c900b28 |
| SHA512 | 1d091dd07f76d2cbf40dd0d0a0100ce74b66be1db970253201b443d438cc80b84b3fc8ee4241f45cd8c80e9ccca3aae0fa3613bcf302639b143823d86e91fdb1 |
C:\Users\Admin\AppData\Local\Temp\Cab35A3.tmp
| MD5 | ac05d27423a85adc1622c714f2cb6184 |
| SHA1 | b0fe2b1abddb97837ea0195be70ab2ff14d43198 |
| SHA256 | c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d |
| SHA512 | 6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d |
C:\Users\Admin\AppData\Local\Temp\Tar35A4.tmp
| MD5 | 9c0c641c06238516f27941aa1166d427 |
| SHA1 | 64cd549fb8cf014fcd9312aa7a5b023847b6c977 |
| SHA256 | 4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f |
| SHA512 | 936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
| MD5 | 49aebf8cbd62d92ac215b2923fb1b9f5 |
| SHA1 | 1723be06719828dda65ad804298d0431f6aff976 |
| SHA256 | b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f |
| SHA512 | bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b |
C:\Users\Admin\AppData\Local\Temp\Tar36B4.tmp
| MD5 | 4ea6026cf93ec6338144661bf1202cd1 |
| SHA1 | a1dec9044f750ad887935a01430bf49322fbdcb7 |
| SHA256 | 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8 |
| SHA512 | 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 651de186128d4aa86576e40daf9926b8 |
| SHA1 | 6cdad0e9481e6ccd7819a0a95ec7818ef4635c8b |
| SHA256 | b981c0888f631d4b35773bd49bf93d8c5e58eef4e386106a6280efffff9a3949 |
| SHA512 | de50c86abb02c28f54ce70fe7c7e1f315f153aa42c91bac31912f75c73b6d5b95926502b6f0534e4fb938b428f3a26f78423ea51af05deaca2042551d1fc589a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f56aedf905968acd715b2950b5417b98 |
| SHA1 | 5755fc9d28870dd056f7be0754c4bdb785d49fdc |
| SHA256 | 9f39619e66b158034c86825942db5a678a14abb0559957caba8114df1dc8fa87 |
| SHA512 | b5956b4b1d653f94784cafb8b6910844ec3cf46ad1d9a826f04f9814e027c247eee2b985925b0ee6af735017715109567a1715158dc85675e55acc5eec615e56 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 50be4d8db714b2b5f5b0239037cbdae2 |
| SHA1 | 3f98d381f02eaf307ee7045950c652f601d1abed |
| SHA256 | 8104674ce6913c2cec50334477c2180acc9625bd6fe45c69f8f1c6b18a19500c |
| SHA512 | 6068ae2dbdecffcde1f29f09ca9d557e49ef03b9adc7548eac8d3e20aacd204ec8577609818cf51d45ef2a5283179ca133deb53865176971b7a91b774f0cc2ff |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 1bc27bf4acce1843478136bed99efd56 |
| SHA1 | 24f675587808ab949307a753f45875b3a20685a9 |
| SHA256 | 3b01a43bec4b9dbbf5153777329af22d6d3e5ec9738c7d02bea5ba1a941df882 |
| SHA512 | 4cf78790735993d049e033d61a83341b6facc72431d373bc35afc81b6dc882378a521ac87f2cdcff84a875e670e7b5acce70d34c09cb7a72c07ba2eb7b3f5016 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d6e6bb2624c478eb29bdc0119a166503 |
| SHA1 | 0d5858dd25625688ba8a1e808efcf56c611e5fc1 |
| SHA256 | 86a2968a1ff81d23bc002492cba57ca5ab5f35c194146162461a1eddd42ff38b |
| SHA512 | a49e198f0c578642f8df5f41e2e448eb62471bfb8dc57b9e68a096181b74d6c0b3911b6acdb576d1eb40da1ffe73b753f3ccb9a7a576b70344f8f19b902bd59a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 8e9a9668518258b578a7bb9a2bcff900 |
| SHA1 | 470a41441e9ebe77ebec9a45862c0201b5514cf1 |
| SHA256 | de99c48e78c3fa9a7b09f42a0602b4ae22c77ed1148a33abc27f832880cc3a99 |
| SHA512 | 3dc03e2a94089876d3bd63b6a3e9a009254edfefee6e940d66c69fb80f472de9a0ee28dd7b6f6902aa61c2d9e1c969beead0f38d8e106a9b0dd079babd1b1017 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | bef3138954db52fe2c5e2be677a69b91 |
| SHA1 | 9b2e9a57f72c1e0149fbc603965ede4031e0ecd1 |
| SHA256 | fceca035a548cd2d9b46fcf6c9f4b77a91c8cc8208f4ec864f0ddfe2334b48ad |
| SHA512 | dec6dafd65bd7a343a395a9fa6fd585e08780c360755206054552f2d33dbc835ea3da770bc0153096f2f7ca4468ed031111d9adcd02d0b3c959d33f268f25bc6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c72a09f1f67ecb13ab344dce9c51474d |
| SHA1 | b9722fa00d3fdc0464401ad9fe3013c680fc3503 |
| SHA256 | 16c58f703ecb86c88be068d82110f1d71ff447c3ca5014590eb6c17d70e0ec07 |
| SHA512 | 2c2d747d6c2f4e5350e68152b9ef439464cb5666b0f838562d9a9044b0b7ecc35dde29e4a4a74a5b247fb2665a5cc25d53e1232256747b2943f20fff0d9978e9 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d1e14d18c3e5b388e1c1e8275f9aa895 |
| SHA1 | e9672376e0edce361c167346734956ca8b4bceb2 |
| SHA256 | 0c9cc58f88aa0ed6a3387913eabfbfca97b8148ea8a990b3b443350f50aea3c4 |
| SHA512 | 6e5280344ba3a4d5a2fd1f83ac27391e144622be5840100eae67446dd5aa050e3268880e4d31c43dde756b8e8c940905ee7b8fcbbe9b15fcb6e4321f20ded0a3 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ab72e8f1121fc65b9cf6df01e81f04a4 |
| SHA1 | cdc1a1d00a358dfcd42d84c312d076432c597200 |
| SHA256 | f2cd899fc36755ff8dd959e225a69e408c55c303312a9777fe2e61913f1c79fa |
| SHA512 | 3893e935bc6ab321e42d112e52f7f4094f111e57a966c78cc6fc483e83f53c63cb5ac525d9ad9c3bae3d8e4cf84979f35c450f5192c0bedfc922ba99a859b88a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f9c055ca313e08f5be83cf489063fc4d |
| SHA1 | 43985cbcefc0bd84575b2fd383c3425cb0f3d8ec |
| SHA256 | 12a599e5d36396b3a5dbbb7452bdad97550f2c61e1762ae8545052b1c644d5c2 |
| SHA512 | 382c8a759aeb8ea3d0c8648e627f8f9b7b5102d6775ecf6ebc2da3f85aaad8342ead89dfb9df9fa2b2ae79cb27f49568c12a4e453390eb6deeaa606c3e6fa354 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
| MD5 | a266bb7dcc38a562631361bbf61dd11b |
| SHA1 | 3b1efd3a66ea28b16697394703a72ca340a05bd5 |
| SHA256 | df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e |
| SHA512 | 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
| MD5 | 5d22fea68406ebb425706e21eeba0dd8 |
| SHA1 | 50e9ed069fd7b98057f359efee18664e746a74ba |
| SHA256 | 20d078fa3a2d1332337667c379fb4d2b9f428e0f97c9f9e23d67e3a0bde9bc75 |
| SHA512 | 578f5941e7f287fb311567400f8dba57a5bbbfac84917d2a9a556049eb5fcbebd08331076b46f5c10403323c5837c476078f3be8fccf2968bc9f30afdd7ca6ec |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 4fecc66f0843bae8e50a751d2d2edf0c |
| SHA1 | a44f5d0cfb26b7d8f958ed1cbdb405e6619f9bad |
| SHA256 | 5abf04137d02e4973dcdb60c5dd44295e40e3a6be44f3fa411682d72999354f4 |
| SHA512 | bc6acaf0548b646fb75a3821a615013e4f984f0459837fbd43e2165c91de5cb91db9ff474071633d30a28d66930a4ac55b0ee9d0277ca8b62329683609110758 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2052743b26a3838d35594a5a36e6d4db |
| SHA1 | e770c6532ae214d37feed152f8f097160500819e |
| SHA256 | 21492ea89abafabcefc3e4deeaaf7093e2a4ef41ab354474a714217c7026009a |
| SHA512 | b5deba66b421ea790d2b0e7d6c6c262f8dc71709b692404fdfebd901beaf4eca9501b807660efa2c3db41976f239741bb58414fe952dd86c49f404987f4da95f |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | b88ea03df0769a9d7f37eaa31beb0d2a |
| SHA1 | c3093ffcbd5426c66a6eb1010111bbb7c0f7853a |
| SHA256 | 7c968f5b2c99c64da362bbaa0084b88cc143c293b49a6b63a6aa9fa9f491d844 |
| SHA512 | 948c6b98a54cb73c55e27f6faff029bf890057b435fc2109ef72ba3b3798109015422a45e30145c778bcd52effc1b5456e3c1775aaabbe60acd569dfe86e1a8b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 45d25cacfdad028116c27f62b2e508ae |
| SHA1 | 6b235c83eb1a99a16652d4e1fec18c703e41097b |
| SHA256 | 22109c7112d5b9df9a8aeab6a74e5694bfda54f560d2e61a77c1e8e92903fea6 |
| SHA512 | c3288beb51f441fe7cd3dda41796a4e755986eba5097d1ff4cbd13ed59a52126c68b6f168642cece35f72dbe3608985c1e7429f70c6737a76604fcd046d5edad |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
| MD5 | e4a68ac854ac5242460afd72481b2a44 |
| SHA1 | df3c24f9bfd666761b268073fe06d1cc8d4f82a4 |
| SHA256 | cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f |
| SHA512 | 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 96b6caee807fd27b7cbe84a08fcb0f32 |
| SHA1 | 6877a28044892c23e0f0476f52202f70e1de0b51 |
| SHA256 | 70bc0e6ae8ab8b1e05dd63e049411d2fbed81ec9b449dd6376c74a06d0015d81 |
| SHA512 | 696be3a28b677a40ae34e6edaae653b8155453e9206d334ef9e6fb9e5138c5b9c338ebfde8637d1de484b234f3443ee37c4be6656d09c21794ede864ac166e53 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2111eb15e3936ede21c518a2779b80a6 |
| SHA1 | 4d3324b3333860c82435f2f77d42879c5ff18161 |
| SHA256 | aec23c255a43adb4a42413fb3649be66e7570220e5bd2d25779e8e5015581756 |
| SHA512 | 5d2d442c9fcdc865c450cd34c4b5e3c3679501585cfc204f821048c4c0b56785a70c81bfe1ed429211b8528b56b8efe3876a7d72850f74204b107f68638c7c16 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
| MD5 | 4c84608b0bf4a6eb1c37e8174b0ef44e |
| SHA1 | 8a639630f7c6cc7692a84bd5799e5bc0c6ea2dc5 |
| SHA256 | a4a9181645635755487a27a4634ed7ada13c298834af214f7985e888bf5fa592 |
| SHA512 | 6922d0e9352ad44f036a7bc4bd96de2ac19cc46f9980fd9657180e945c7f17d1d979b2fdd7302aa52b633795ee73cd8d93a3667bb089cd6e351ce63ce9c4e079 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | adcf5f76893bf7bc039a3517e8f83063 |
| SHA1 | 2755840d9ff176886d2745da4a1bc5e478b6fc19 |
| SHA256 | 74aa0e83ce1d9272b3223b3f9d87cc3de1b173ab0c9e0c2a41a3ba2057499ad5 |
| SHA512 | eb4e975c35c41ebb20eacbe9a5e85f4fc10631c05b0b61c13ae4dc8e62b314398b0fe0034bc0baf393163d700d34fc59811c9e76eaf7af462e3c217e514a07b0 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-14 09:05
Reported
2024-06-14 09:08
Platform
win10v2004-20240611-en
Max time kernel
132s
Max time network
143s
Command Line
Signatures
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a8e06cb5b27d7de0b15b5a8860656b3b_JaffaCakes118.html
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=4964,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=5056 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=4952,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=4700 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=5288,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=5304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=5308,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=5488 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --field-trial-handle=5476,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=5540 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5924,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=6008 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=5940,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=6280 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --field-trial-handle=6348,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=6304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --field-trial-handle=5324,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=5656 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=1036,i,10925946972013221578,8820669985803190952,262144 --variations-seed-version --mojo-platform-channel-handle=5892 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | api.edgeoffer.microsoft.com | udp |
| US | 8.8.8.8:53 | api.edgeoffer.microsoft.com | udp |
| IE | 94.245.104.56:443 | api.edgeoffer.microsoft.com | tcp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 13.107.6.158:443 | business.bing.com | tcp |
| US | 8.8.8.8:53 | www.acaprensa.com | udp |
| US | 8.8.8.8:53 | www.acaprensa.com | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| SE | 184.31.15.35:443 | bzib.nelreports.net | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| SE | 23.34.233.128:443 | www.microsoft.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| GB | 216.58.204.74:445 | fonts.googleapis.com | tcp |
| GB | 51.140.242.104:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 51.140.242.104:443 | nav-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.104.245.94.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.234.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.15.31.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.233.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.12.61.179.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 204.79.197.237:443 | g.bing.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| BE | 2.17.107.112:443 | www.bing.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | 104.242.140.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.169.31.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| GB | 216.58.204.74:139 | fonts.googleapis.com | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 13.107.246.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.253.64:443 | wcpstatic.microsoft.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | 64.253.107.13.in-addr.arpa | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| BE | 88.221.83.243:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | 243.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | player.radioforge.com | udp |
| US | 8.8.8.8:53 | player.radioforge.com | udp |
| US | 8.8.8.8:53 | player.radioforge.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 104.21.53.2:443 | player.radioforge.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | static.radioforge.com | udp |
| US | 8.8.8.8:53 | static.radioforge.com | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | maps.gstatic.com | udp |
| US | 8.8.8.8:53 | maps.gstatic.com | udp |
| US | 8.8.8.8:53 | maps.googleapis.com | udp |
| US | 8.8.8.8:53 | maps.googleapis.com | udp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| US | 104.237.2.171:443 | static.radioforge.com | tcp |
| GB | 172.217.16.227:443 | maps.gstatic.com | tcp |
| GB | 142.250.180.10:443 | maps.googleapis.com | tcp |
| GB | 142.250.180.10:443 | maps.googleapis.com | udp |
| GB | 142.250.180.10:443 | maps.googleapis.com | udp |
| US | 8.8.8.8:53 | 2.53.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.2.237.104.in-addr.arpa | udp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| US | 179.61.12.110:80 | www.acaprensa.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.acaprensa.com | udp |
| US | 8.8.8.8:53 | www.acaprensa.com | udp |
| US | 179.61.12.110:443 | www.acaprensa.com | tcp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 8.8.8.8:53 | _8000._https.www.acaprensa.net | udp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 8.8.8.8:53 | _8000._https.www.acaprensa.net | udp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.31.95.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 8.8.8.8:53 | _8000._https.www.acaprensa.net | udp |
| US | 8.8.8.8:53 | _8000._https.www.acaprensa.net | udp |
| US | 8.8.8.8:53 | www.acaprensa.net | udp |
| US | 8.8.8.8:53 | 29.243.111.52.in-addr.arpa | udp |
| BE | 2.17.107.123:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 123.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.24.18.2.in-addr.arpa | udp |
| BE | 88.221.83.186:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 186.83.221.88.in-addr.arpa | udp |