Malware Analysis Report

2024-10-10 11:34

Sample ID 240614-l9mkfawdmg
Target http://google.com
Tags
score
3/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
3/10

Threat Level: Likely benign

The file http://google.com was found to be: Likely benign.

Malicious Activity Summary


Enumerates kernel/hardware configuration

Reads runtime system information

Checks CPU information

Checks memory information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-14 10:14

Signatures

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:44

Platform

android-x64-arm64-20240611.1-en

Max time kernel

1806s

Max time network

1824s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
GB 142.250.187.206:443 tcp
GB 142.250.187.206:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 accounts.google.com udp
BE 142.251.173.84:443 accounts.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
US 1.1.1.1:53 google.com udp
BE 66.102.1.84:443 accounts.google.com tcp
GB 216.58.204.78:80 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.228:443 www.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.204.78:80 google.com tcp
GB 142.250.180.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 clients1.google.com udp
GB 216.58.212.206:443 clients1.google.com tcp
US 1.1.1.1:53 apis.google.com udp
GB 142.250.179.238:443 apis.google.com tcp
US 1.1.1.1:53 play.google.com udp
GB 142.250.187.238:443 play.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.204.67:443 update.googleapis.com tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.213.3:443 update.googleapis.com tcp
GB 142.250.187.228:443 www.google.com tcp
GB 142.250.179.226:443 tcp
GB 216.58.201.99:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
GB 216.58.201.110:443 tcp

Files

files/dom-0.html

MD5 1cf81a756ab7194b44369ae33e64c0a6
SHA1 176e5361b590a59ac8e45ffa7a79600b97e32b83
SHA256 2d76839d2ac26609dcdde443cc25dff4c1014e6435d6783aa14da8f6b4f9e72f
SHA512 8c3cdce6c71dddf053d215c6ba62ef8d9b5a79d3d8de59096e5bbbbe78694e688c4b7070e841ffdb7312c47f7a99a205b46d8ddd91cc9882631aef6a543b5940

Analysis: behavioral4

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:44

Platform

ubuntu1804-amd64-20240611-en

Max time kernel

0s

Max time network

1680s

Command Line

[xdg-open http://google.com]

Signatures

Enumerates kernel/hardware configuration

Description Indicator Process Target
File opened for reading /sys/bus/pci/devices/0000:00:01.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/class /usr/lib/firefox/firefox N/A

Reads runtime system information

Description Indicator Process Target
File opened for reading /proc/self/fd /usr/bin/dbus-send N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/task/1600/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/task/1626/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/task/1613/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd /usr/bin/dbus-send N/A
File opened for reading /proc/filesystems /bin/sed N/A

Processes

/usr/bin/xdg-open

[xdg-open http://google.com]

/usr/bin/dbus-send

[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/bin/grep

[grep = \"xfce4\"$]

/usr/bin/xprop

[xprop -root _DT_SAVE_MODE]

/usr/bin/xprop

[xprop -root]

/bin/grep

[grep -i ^xfce_desktop_window]

/bin/grep

[grep -q ^Enlightenment]

/bin/uname

[uname]

/bin/grep

[grep -q ^file://]

/bin/egrep

[egrep -q ^[[:alpha:]+\.\-]+:]

/usr/local/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/local/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/bin/sed

[sed -n s/\(^[[:alnum:]+\.-]*\):.*$/\1/p]

/usr/bin/xdg-mime

[xdg-mime query default x-scheme-handler/http]

/usr/bin/dbus-send

[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/bin/grep

[grep = \"xfce4\"$]

/usr/bin/xprop

[xprop -root _DT_SAVE_MODE]

/bin/grep

[grep -i ^xfce_desktop_window]

/usr/bin/xprop

[xprop -root]

/bin/grep

[grep -q ^Enlightenment]

/bin/uname

[uname]

/bin/sed

[sed s/:/ /g]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache]

/bin/sed

[sed s/:/ /g]

/bin/sed

[sed -e s|-|/|]

/bin/sed

[sed -e s|-|/|]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/which

[which firefox]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/firefox

[/usr/bin/firefox http://google.com]

/usr/bin/which

[which /usr/bin/firefox]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/bin/grep

[grep -q %s]

/usr/bin/x-www-browser

[x-www-browser http://google.com]

/usr/bin/which

[which /usr/bin/x-www-browser]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/bin/grep

[grep -q %s]

/usr/bin/firefox

[firefox http://google.com]

/usr/bin/which

[which /usr/bin/firefox]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 185.125.188.62:443 tcp
GB 185.125.188.61:443 tcp
US 151.101.193.91:443 tcp
US 151.101.193.91:443 tcp
GB 195.181.164.14:443 tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 91.189.91.48:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.96:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.96:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.48:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.97:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.49:80 connectivity-check.ubuntu.com tcp

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:14

Platform

debian9-mipsbe-20240611-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral7

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:14

Platform

debian9-mipsel-20240418-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:44

Platform

android-x64-20240611.1-en

Max time kernel

375s

Max time network

1791s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 accounts.google.com udp
BE 108.177.15.84:443 accounts.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 66.102.1.84:443 accounts.google.com tcp
US 1.1.1.1:53 google.com udp
GB 216.58.212.206:80 google.com tcp
GB 216.58.212.206:80 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.212.228:443 www.google.com tcp
GB 172.217.169.10:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.187.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 clients1.google.com udp
GB 172.217.16.238:443 clients1.google.com tcp
US 1.1.1.1:53 apis.google.com udp
GB 142.250.200.14:443 apis.google.com tcp
US 1.1.1.1:53 play.google.com udp
GB 142.250.200.46:443 play.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.213.3:443 update.googleapis.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.238:443 android.apis.google.com tcp
GB 142.250.187.196:443 tcp
GB 142.250.187.196:443 tcp
GB 172.217.169.10:443 tcp
GB 172.217.169.14:443 tcp
GB 172.217.169.78:443 tcp
GB 142.250.179.226:443 tcp
US 1.1.1.1:53 update.googleapis.com udp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.180.14:443 android.apis.google.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
BE 64.233.184.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.212.228:443 www.google.com tcp

Files

files/dom-0.html

MD5 24bbd191e50c7da4d6b0e016c2d80ead
SHA1 665153233952b59f44e133f45a521ab5bfbbf293
SHA256 14833cbcb8efadcf36ddcfbe3c304d93ffc85c8c1ce72afb75135c6d9ba38d54
SHA512 225f08f4dff451bf09a900a21416ebf6b9a4b8f6ba6c606cb88f24585095274744a2a94b3b50992e05e5ece5e93f9eb5c8fdabe747cabbe969284a9d87b03523

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:44

Platform

android-x86-arm-20240611.1-en

Max time kernel

1828s

Max time network

1833s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 google.com udp
GB 142.250.200.46:80 google.com tcp
GB 142.250.200.46:80 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
US 1.1.1.1:53 ssl.gstatic.com udp
GB 142.250.187.195:443 ssl.gstatic.com tcp
US 1.1.1.1:53 clients1.google.com udp
GB 172.217.16.238:443 clients1.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 142.250.179.227:443 update.googleapis.com tcp
GB 142.250.179.228:443 www.google.com tcp
GB 216.58.201.110:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.14:443 android.apis.google.com tcp
GB 92.123.142.81:443 www.bing.com tcp
GB 92.123.142.81:443 www.bing.com tcp
GB 216.58.212.202:443 tcp
GB 216.58.212.202:443 tcp
US 1.1.1.1:53 th.bing.com udp
GB 92.123.142.97:443 th.bing.com tcp
GB 92.123.142.97:443 th.bing.com tcp
GB 92.123.142.97:443 th.bing.com tcp
US 1.1.1.1:53 tse3.mm.bing.net udp
US 150.171.28.10:443 tse3.mm.bing.net tcp
US 1.1.1.1:53 login.microsoftonline.com udp
NL 40.126.32.76:443 login.microsoftonline.com tcp
US 172.64.154.167:443 www2.bing.com tcp
US 1.1.1.1:53 tse1.explicit.bing.net udp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
US 1.1.1.1:53 thisvid.com udp
NL 88.208.57.223:443 thisvid.com tcp
NL 88.208.57.223:443 thisvid.com tcp
US 1.1.1.1:53 media.thisvid.com udp
NL 67.216.89.16:443 media.thisvid.com tcp
NL 67.216.89.16:443 media.thisvid.com tcp
NL 67.216.89.16:443 media.thisvid.com tcp
NL 67.216.89.16:443 media.thisvid.com tcp
NL 67.216.89.16:443 media.thisvid.com tcp
NL 67.216.89.16:443 media.thisvid.com tcp
US 1.1.1.1:53 cdn.tsyndicate.com udp
SG 45.133.44.71:443 cdn.tsyndicate.com tcp
US 1.1.1.1:53 extanalytics.com udp
US 1.1.1.1:53 a.magsrv.com udp
GB 37.220.3.147:443 extanalytics.com tcp
GB 89.187.167.2:443 a.magsrv.com tcp
US 1.1.1.1:53 ads.exoclick.com udp
GB 89.187.167.3:443 ads.exoclick.com tcp
US 1.1.1.1:53 tsyndicate.com udp
DE 78.46.40.103:443 tsyndicate.com tcp
DE 78.46.40.103:443 tsyndicate.com tcp
DE 78.46.40.103:443 tsyndicate.com tcp
DE 78.46.40.103:443 tsyndicate.com tcp
US 1.1.1.1:53 bngdyn.com udp
NL 185.75.252.140:443 bngdyn.com tcp
US 1.1.1.1:53 s.magsrv.com udp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
GB 172.217.16.238:443 clients1.google.com tcp
GB 37.220.3.147:443 extanalytics.com tcp
GB 37.220.3.147:443 extanalytics.com tcp
US 1.1.1.1:53 acdn.tsyndicate.com udp
SG 45.133.44.71:443 acdn.tsyndicate.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
US 1.1.1.1:53 i.bngprm.com udp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 64.210.156.7:443 i.bngprm.com tcp
GB 195.181.164.21:443 s3t3d2y8.afcdn.net tcp
GB 195.181.164.21:443 s3t3d2y8.afcdn.net tcp
GB 195.181.164.21:443 s3t3d2y8.afcdn.net tcp
GB 195.181.164.21:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 u3y8v8u4.aucdn.net udp
GB 89.187.167.2:443 u3y8v8u4.aucdn.net tcp
US 1.1.1.1:53 go.mnaspm.com udp
US 1.1.1.1:53 u3y8v8u4.aucdn.net udp
GB 89.187.167.2:443 u3y8v8u4.aucdn.net tcp
US 1.1.1.1:53 bn5.trafget.com udp
US 104.21.0.238:443 bn5.trafget.com tcp
US 1.1.1.1:53 bn4.trafget.com udp
US 172.67.128.119:443 bn4.trafget.com tcp
US 1.1.1.1:53 g.adxoclick.com udp
US 104.21.27.174:443 g.adxoclick.com tcp
US 104.21.27.174:443 g.adxoclick.com tcp
US 1.1.1.1:53 pxl.tsyndicate.com udp
DE 136.243.69.157:443 pxl.tsyndicate.com tcp
DE 136.243.69.157:443 pxl.tsyndicate.com tcp
DE 136.243.69.157:443 pxl.tsyndicate.com tcp
US 1.1.1.1:53 bn1.trafget.com udp
US 1.1.1.1:53 gw.madcheddar.net udp
NL 46.166.186.6:443 gw.madcheddar.net tcp
US 1.1.1.1:53 go.mnaspm.com udp
US 172.64.147.206:443 go.mnaspm.com tcp
US 172.64.147.206:443 go.mnaspm.com tcp
US 172.64.147.206:443 go.mnaspm.com tcp
US 172.64.147.206:443 go.mnaspm.com tcp
US 172.64.147.206:443 go.mnaspm.com tcp
US 172.64.147.206:443 go.mnaspm.com tcp
US 1.1.1.1:53 img.strpst.com udp
US 104.17.10.106:443 img.strpst.com tcp
US 104.17.10.106:443 img.strpst.com tcp
US 104.17.10.106:443 img.strpst.com tcp
US 104.17.10.106:443 img.strpst.com tcp
US 1.1.1.1:53 geos.adxoclick.com udp
US 104.17.10.106:443 img.strpst.com tcp
US 104.17.10.106:443 img.strpst.com tcp
US 1.1.1.1:53 prnteen.com udp
US 104.21.48.85:443 prnteen.com tcp
US 1.1.1.1:53 cdn.go-static.info udp
GB 89.187.167.9:443 cdn.go-static.info tcp
US 1.1.1.1:53 cdn.go-static.info udp
GB 89.187.167.4:443 cdn.go-static.info tcp
US 1.1.1.1:53 go.adxoclick.com udp
NL 46.166.186.7:443 go.adxoclick.com tcp
US 1.1.1.1:53 edge-hls.doppiocdn.net udp
GB 216.137.44.14:443 edge-hls.doppiocdn.net tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 code.jquery.com udp
US 104.21.79.162:443 xyouxxx.com tcp
US 151.101.194.137:443 code.jquery.com tcp
US 1.1.1.1:53 b-hls-05.doppiocdn.net udp
GB 18.165.227.60:443 b-hls-05.doppiocdn.net tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 1.1.1.1:53 cdn.bvfront.com udp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 32412.2479april2024.com udp
NL 88.208.22.3:443 32412.2479april2024.com tcp
US 1.1.1.1:53 a.labadena.com udp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 twinrdsyn.com udp
US 172.64.153.186:443 twinrdsyn.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
DE 78.46.40.103:443 tsyndicate.com tcp
US 1.1.1.1:53 service.zingtraffic.com udp
NL 46.166.186.7:443 service.zingtraffic.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 p242.2499may2024.com udp
NL 88.208.22.1:443 p242.2499may2024.com tcp
US 172.64.147.206:443 go.mnaspm.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
US 172.64.153.186:443 twinrdsyn.com tcp
NL 46.166.186.7:443 service.zingtraffic.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.9:443 s3t3d2y8.afcdn.net tcp
GB 89.187.167.9:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 jupiter3.thisvid.com udp
US 1.1.1.1:53 thisvid.com udp
NL 88.208.31.24:443 jupiter3.thisvid.com tcp
NL 88.208.57.223:443 thisvid.com tcp
US 1.1.1.1:53 vacdn.tsyndicate.com udp
GB 185.185.15.2:443 vacdn.tsyndicate.com tcp
US 1.1.1.1:53 jupiter3.thisvid.com udp
US 1.1.1.1:53 ip250112381.ahcdn.com udp
NL 88.208.31.24:443 jupiter3.thisvid.com tcp
US 1.1.1.1:53 ip255736194.ahcdn.com udp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
GB 185.208.128.73:443 ip255736194.ahcdn.com tcp
US 1.1.1.1:53 ip250112381.ahcdn.com udp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
US 1.1.1.1:53 service.goadnow.com udp
NL 46.166.186.6:443 service.goadnow.com tcp
US 1.1.1.1:53 vacdn.tsyndicate.com udp
GB 185.185.15.2:443 vacdn.tsyndicate.com tcp
US 1.1.1.1:53 ip255736194.ahcdn.com udp
GB 185.208.128.73:443 ip255736194.ahcdn.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.21:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s.optnx.com udp
NL 46.166.186.6:443 service.goadnow.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 twinrdsrv.com udp
US 172.66.43.59:443 twinrdsrv.com tcp
US 1.1.1.1:53 tfosrv.com udp
US 216.18.168.29:443 tfosrv.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 miserly-phone.com udp
NL 88.85.68.219:443 miserly-phone.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.6:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
GB 89.187.167.6:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.17:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
NL 95.211.229.246:443 s.optnx.com tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.15:443 s3t3d2y8.afcdn.net tcp
GB 195.181.164.15:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
GB 142.250.187.227:80 tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 142.250.179.228:443 www.google.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.21:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 172.217.16.226:443 tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 172.217.169.3:443 tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
GB 142.250.187.206:443 tcp
GB 172.217.169.3:443 tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 142.250.187.206:443 tcp
GB 172.217.169.3:443 tcp
GB 172.217.169.3:443 tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 142.250.180.3:443 update.googleapis.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.14:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 media.thisvid.com udp
NL 67.216.89.41:443 media.thisvid.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.5:443 s3t3d2y8.afcdn.net tcp
GB 89.187.167.5:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 185.208.130.154:443 ip250112381.ahcdn.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.20:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.14:443 s3t3d2y8.afcdn.net tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.14:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.8:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.7:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tfosrv.com udp
US 216.18.168.29:443 tfosrv.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.6:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 pxl.tsyndicate.com udp
DE 136.243.80.153:443 pxl.tsyndicate.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.7:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.5:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.9:443 s3t3d2y8.afcdn.net tcp
DE 136.243.80.153:443 pxl.tsyndicate.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 89.187.167.9:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.6:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.7:443 s3t3d2y8.afcdn.net tcp
GB 89.187.167.7:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 pxl.tsyndicate.com udp
DE 136.243.80.153:443 pxl.tsyndicate.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
NL 95.211.229.246:443 s.optnx.com tcp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 a.labadena.com udp
DE 94.130.130.77:443 a.labadena.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.9:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.6:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.7:443 s3t3d2y8.afcdn.net tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.15:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 172.67.146.150:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.17:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 a.labadena.com udp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 miserly-phone.com udp
NL 88.85.68.219:443 miserly-phone.com tcp
US 172.67.177.102:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.8:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 104.21.43.87:443 cdn.bvfront.com tcp
GB 89.187.167.8:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 1.1.1.1:53 miserly-phone.com udp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 cdn.bvfront.com udp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
BE 142.251.5.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.212.228:443 www.google.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.18:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 88.85.68.219:443 miserly-phone.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 pxl.tsyndicate.com udp
DE 116.202.244.171:443 pxl.tsyndicate.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.8:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.17:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.2:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.15:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.23:443 tsvideo.sacdnssedge.com tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.3:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
US 172.67.146.150:443 xyouxxx.com tcp
GB 142.250.200.46:443 google.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.optnx.com tcp
US 104.21.43.87:443 cdn.bvfront.com tcp
GB 89.187.167.4:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 xyouxxx.com udp
US 104.21.79.162:443 xyouxxx.com tcp
US 104.21.79.162:443 xyouxxx.com tcp
DE 116.202.244.171:443 pxl.tsyndicate.com tcp

Files

files/dom-0.html

MD5 a5933288982c1b33f538205b2186df88
SHA1 07dc8ca0c64360f88ac71897298593146cb506c3
SHA256 419cec1ac86e178b0d18d7d66e93a1646086726f1db4f5df12a91d9e65e05733
SHA512 083de53c93d18efdc4e4a9cc9f4de6fc4784c5c31660b5dbfd4b5c75e8e548be147ebccbd50a9fca83792c3efd8e09371d80416915bdd4cde498a2c1f124452d

Analysis: behavioral5

Detonation Overview

Submitted

2024-06-14 10:14

Reported

2024-06-14 10:14

Platform

debian9-armhf-20240418-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A