Analysis Overview
Threat Level: Likely benign
The file http://google.com was found to be: Likely benign.
Malicious Activity Summary
Reads runtime system information
Enumerates kernel/hardware configuration
Checks CPU information
Checks memory information
MITRE ATT&CK
Enterprise Matrix V15
Mobile Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-14 09:34
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 10:05
Platform
android-x86-arm-20240611.1-en
Max time kernel
1588s
Max time network
1828s
Command Line
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | google.com | udp |
| GB | 216.58.201.110:80 | google.com | tcp |
| GB | 216.58.201.110:80 | google.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | ssl.gstatic.com | udp |
| GB | 142.250.200.35:443 | ssl.gstatic.com | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| GB | 142.250.178.14:443 | clients1.google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 142.250.187.206:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| GB | 184.28.176.35:443 | www.bing.com | tcp |
| GB | 184.28.176.35:443 | www.bing.com | tcp |
| GB | 216.58.212.202:443 | tcp | |
| US | 1.1.1.1:53 | th.bing.com | udp |
| GB | 2.18.66.163:443 | th.bing.com | tcp |
| GB | 2.18.66.163:443 | th.bing.com | tcp |
| GB | 2.18.66.163:443 | th.bing.com | tcp |
| US | 1.1.1.1:53 | login.microsoftonline.com | udp |
| IE | 40.126.31.73:443 | login.microsoftonline.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 1.1.1.1:53 | tse1.explicit.bing.net | udp |
| US | 131.253.33.201:443 | tse1.explicit.bing.net | tcp |
| US | 131.253.33.201:443 | tse1.explicit.bing.net | tcp |
| US | 131.253.33.201:443 | tse1.explicit.bing.net | tcp |
| US | 131.253.33.201:443 | tse1.explicit.bing.net | tcp |
| US | 131.253.33.201:443 | tse1.explicit.bing.net | tcp |
| US | 131.253.33.201:443 | tse1.explicit.bing.net | tcp |
| US | 1.1.1.1:53 | th.bing.com | udp |
| GB | 92.123.142.88:443 | th.bing.com | tcp |
| US | 1.1.1.1:53 | www.pornburst.xxx | udp |
| US | 104.21.235.125:443 | www.pornburst.xxx | tcp |
| US | 1.1.1.1:53 | pics.pornburst.xxx | udp |
| GB | 89.187.167.4:443 | pics.pornburst.xxx | tcp |
| GB | 89.187.167.4:443 | pics.pornburst.xxx | tcp |
| GB | 89.187.167.4:443 | pics.pornburst.xxx | tcp |
| GB | 89.187.167.4:443 | pics.pornburst.xxx | tcp |
| GB | 89.187.167.4:443 | pics.pornburst.xxx | tcp |
| GB | 89.187.167.4:443 | pics.pornburst.xxx | tcp |
| US | 1.1.1.1:53 | cdnst4.pornburst.xxx | udp |
| US | 1.1.1.1:53 | cdnst4.pornburst.xxx | udp |
| US | 1.1.1.1:53 | imasdk.googleapis.com | udp |
| US | 1.1.1.1:53 | cdnst4.pornburst.xxx | udp |
| GB | 195.181.164.14:443 | cdnst4.pornburst.xxx | tcp |
| GB | 142.250.187.195:80 | tcp | |
| GB | 142.250.179.228:443 | tcp | |
| GB | 195.181.164.19:443 | cdnst4.pornburst.xxx | tcp |
| GB | 142.250.187.226:443 | tcp | |
| GB | 216.58.212.227:443 | tcp | |
| GB | 142.250.178.14:443 | clients1.google.com | tcp |
| GB | 216.58.212.227:443 | tcp | |
| GB | 142.250.178.14:443 | clients1.google.com | tcp |
| GB | 216.58.212.227:443 | tcp | |
| GB | 216.58.212.227:443 | tcp | |
| US | 1.1.1.1:53 | www.xnxx.com | udp |
| NL | 185.88.181.55:443 | www.xnxx.com | tcp |
| US | 1.1.1.1:53 | static-ss.xnxx-cdn.com | udp |
| US | 1.1.1.1:53 | cdn77-pic.xnxx-cdn.com | udp |
| GB | 84.17.50.12:443 | cdn77-pic.xnxx-cdn.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xnxx-cdn.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xnxx-cdn.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xnxx-cdn.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xnxx-cdn.com | tcp |
| US | 1.1.1.1:53 | cdn77-vid.xnxx-cdn.com | udp |
| GB | 89.187.167.51:443 | cdn77-vid.xnxx-cdn.com | tcp |
| US | 1.1.1.1:53 | s.orbsrv.com | udp |
| NL | 95.211.229.247:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.247:443 | s.orbsrv.com | tcp |
| US | 1.1.1.1:53 | u3y8v8u4.aucdn.net | udp |
| US | 1.1.1.1:53 | u3y8v8u4.aucdn.net | udp |
| GB | 89.187.167.8:443 | u3y8v8u4.aucdn.net | tcp |
| GB | 195.181.164.15:443 | u3y8v8u4.aucdn.net | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.201.99:443 | update.googleapis.com | tcp |
| NL | 185.88.181.55:443 | www.xnxx.com | tcp |
| NL | 185.88.181.55:443 | www.xnxx.com | tcp |
| NL | 185.88.181.55:443 | www.xnxx.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xnxx-cdn.com | tcp |
| US | 1.1.1.1:53 | a.orbsrv.com | udp |
| NL | 95.211.229.247:443 | s.orbsrv.com | tcp |
| GB | 195.181.164.14:443 | a.orbsrv.com | tcp |
| NL | 95.211.229.247:443 | s.orbsrv.com | tcp |
| US | 1.1.1.1:53 | s3t3d2y8.afcdn.net | udp |
| NL | 185.88.181.55:443 | www.xnxx.com | tcp |
| US | 1.1.1.1:53 | tse1.explicit.bing.net | udp |
| US | 1.1.1.1:53 | th.bing.com | udp |
| US | 1.1.1.1:53 | www.pornoxo.com | udp |
| NL | 45.138.131.125:443 | www.pornoxo.com | tcp |
| US | 1.1.1.1:53 | cc.pornoxo.com | udp |
| US | 1.1.1.1:53 | cdn.jsdelivr.net | udp |
| US | 1.1.1.1:53 | code.jquery.com | udp |
| US | 1.1.1.1:53 | syndication.exoclick.com | udp |
| NL | 45.133.44.7:443 | cc.pornoxo.com | tcp |
| NL | 45.133.44.7:443 | cc.pornoxo.com | tcp |
| NL | 45.133.44.7:443 | cc.pornoxo.com | tcp |
| NL | 45.133.44.7:443 | cc.pornoxo.com | tcp |
| US | 1.1.1.1:53 | web-sdk.smartlook.com | udp |
| US | 104.18.186.31:443 | cdn.jsdelivr.net | tcp |
| GB | 89.187.167.2:443 | web-sdk.smartlook.com | tcp |
| GB | 89.187.167.2:443 | web-sdk.smartlook.com | tcp |
| US | 1.1.1.1:53 | mc.yandex.ru | udp |
| RU | 87.250.250.119:443 | mc.yandex.ru | tcp |
| RU | 87.250.250.119:443 | mc.yandex.ru | tcp |
| US | 1.1.1.1:53 | manager.eu.smartlook.cloud | udp |
| DE | 18.194.113.191:443 | manager.eu.smartlook.cloud | tcp |
| NL | 45.138.131.125:443 | www.pornoxo.com | tcp |
| US | 1.1.1.1:53 | img.strpst.com | udp |
| US | 1.1.1.1:53 | toplist.cz | udp |
| US | 104.17.11.106:443 | img.strpst.com | tcp |
| US | 104.17.11.106:443 | img.strpst.com | tcp |
| US | 104.17.11.106:443 | img.strpst.com | tcp |
| US | 104.17.11.106:443 | img.strpst.com | tcp |
| US | 104.17.11.106:443 | img.strpst.com | tcp |
| US | 104.17.11.106:443 | img.strpst.com | tcp |
| NL | 45.133.44.7:443 | cc.pornoxo.com | tcp |
| CZ | 88.86.101.2:443 | toplist.cz | tcp |
| US | 1.1.1.1:53 | a.labadena.com | udp |
| DE | 94.130.130.77:443 | a.labadena.com | tcp |
| DE | 94.130.130.77:443 | a.labadena.com | tcp |
| DE | 94.130.130.77:443 | a.labadena.com | tcp |
| US | 1.1.1.1:53 | a.magsrv.com | udp |
| GB | 89.187.167.2:443 | a.magsrv.com | tcp |
| US | 1.1.1.1:53 | mc.webvisor.org | udp |
| US | 1.1.1.1:53 | mc.yandex.com | udp |
| RU | 77.88.21.119:443 | mc.yandex.com | tcp |
| US | 1.1.1.1:53 | s.magsrv.com | udp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| US | 1.1.1.1:53 | th.bing.com | udp |
| US | 1.1.1.1:53 | tse1.explicit.bing.net | udp |
| NL | 45.138.131.125:443 | www.pornoxo.com | tcp |
| US | 1.1.1.1:53 | www.pornoxo.com | udp |
| CZ | 88.86.101.2:443 | toplist.cz | tcp |
| US | 1.1.1.1:53 | cc.pornoxo.com | udp |
| US | 1.1.1.1:53 | web-sdk.smartlook.com | udp |
| NL | 45.138.128.185:443 | www.pornoxo.com | tcp |
| US | 1.1.1.1:53 | code.jquery.com | udp |
| US | 1.1.1.1:53 | cdn.tapioni.com | udp |
| US | 104.22.38.71:443 | cdn.tapioni.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| DE | 94.130.130.77:443 | a.labadena.com | tcp |
| US | 1.1.1.1:53 | s3t3d2y8.afcdn.net | udp |
| GB | 195.181.164.16:443 | s3t3d2y8.afcdn.net | tcp |
| US | 1.1.1.1:53 | chaturbate.com | udp |
| US | 1.1.1.1:53 | tsyndicate.com | udp |
| US | 1.1.1.1:53 | twinrdsyn.com | udp |
| NL | 95.211.229.247:443 | s.magsrv.com | tcp |
| US | 104.18.100.40:443 | chaturbate.com | tcp |
| US | 104.18.100.40:443 | chaturbate.com | tcp |
| DE | 162.55.130.248:443 | tsyndicate.com | tcp |
| US | 104.18.34.70:443 | twinrdsyn.com | tcp |
| US | 1.1.1.1:53 | go.xlirdr.com | udp |
| US | 104.18.40.50:443 | go.xlirdr.com | tcp |
| US | 1.1.1.1:53 | twinrdsrv.com | udp |
| US | 172.66.40.197:443 | twinrdsrv.com | tcp |
| US | 1.1.1.1:53 | go.cambaddies.com | udp |
| NL | 185.98.55.81:443 | go.cambaddies.com | tcp |
| US | 1.1.1.1:53 | pxl.tsyndicate.com | udp |
| DE | 159.69.137.49:443 | pxl.tsyndicate.com | tcp |
| US | 1.1.1.1:53 | video.sacdnssedge.com | udp |
| US | 1.1.1.1:53 | video.sacdnssedge.com | udp |
| GB | 89.187.167.6:443 | video.sacdnssedge.com | tcp |
| GB | 195.181.164.19:443 | video.sacdnssedge.com | tcp |
| US | 1.1.1.1:53 | www.pornhub.com | udp |
| US | 66.254.114.41:443 | www.pornhub.com | tcp |
| US | 1.1.1.1:53 | media.trafficjunky.net | udp |
| US | 1.1.1.1:53 | prvc.io | udp |
| US | 1.1.1.1:53 | cdn1d-static-shared.phncdn.com | udp |
| US | 1.1.1.1:53 | ads.trafficjunky.net | udp |
| US | 1.1.1.1:53 | ads2.contentabc.com | udp |
| US | 1.1.1.1:53 | ajax.googleapis.com | udp |
| GB | 64.210.156.17:443 | cdn1d-static-shared.phncdn.com | tcp |
| US | 104.21.56.52:443 | prvc.io | tcp |
| GB | 64.210.156.17:443 | cdn1d-static-shared.phncdn.com | tcp |
| US | 1.1.1.1:53 | apis.google.com | udp |
| US | 1.1.1.1:53 | cdn.feeds.videosz.com | udp |
| US | 1.1.1.1:53 | cdn.niche.videosz.com | udp |
| US | 1.1.1.1:53 | cdn1-smallimg.phncdn.com | udp |
| US | 1.1.1.1:53 | cdn1.ads.contentabc.com | udp |
| US | 1.1.1.1:53 | di.phncdn.com | udp |
| US | 1.1.1.1:53 | es.phncdn.com | udp |
| US | 1.1.1.1:53 | m2.nsimg.net | udp |
| US | 1.1.1.1:53 | p.twitter.com | udp |
| US | 1.1.1.1:53 | platform.tumblr.com | udp |
| US | 1.1.1.1:53 | platform.twitter.com | udp |
| US | 1.1.1.1:53 | p.twitter.com | udp |
| US | 1.1.1.1:53 | twitter.com | udp |
| US | 1.1.1.1:53 | ei.phncdn.com | udp |
| US | 1.1.1.1:53 | etahub.com | udp |
| US | 66.254.114.62:443 | etahub.com | tcp |
| US | 66.254.114.62:443 | etahub.com | tcp |
| US | 66.254.114.62:443 | etahub.com | tcp |
| US | 1.1.1.1:53 | evtubescms.phncdn.com | udp |
| US | 1.1.1.1:53 | evtubescms.phncdn.com | udp |
| GB | 64.210.156.0:443 | evtubescms.phncdn.com | tcp |
| GB | 64.210.156.4:443 | evtubescms.phncdn.com | tcp |
| US | 104.18.186.31:443 | cdn.jsdelivr.net | tcp |
| US | 1.1.1.1:53 | ee-h.phncdn.com | udp |
| GB | 64.210.156.2:443 | ee-h.phncdn.com | tcp |
| GB | 64.210.156.18:443 | ei.phncdn.com | tcp |
| US | 1.1.1.1:53 | ss.phncdn.com | udp |
| GB | 64.210.156.18:443 | ss.phncdn.com | tcp |
| GB | 64.210.156.18:443 | ss.phncdn.com | tcp |
| GB | 64.210.156.18:443 | ss.phncdn.com | tcp |
| GB | 64.210.156.18:443 | ss.phncdn.com | tcp |
| GB | 64.210.156.18:443 | ss.phncdn.com | tcp |
| GB | 64.210.156.21:443 | ss.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ss.phncdn.com | tcp |
| US | 66.254.114.156:443 | cdn1-smallimg.phncdn.com | tcp |
| US | 1.1.1.1:53 | static.trafficjunky.com | udp |
| GB | 64.210.156.21:443 | static.trafficjunky.com | tcp |
| GB | 64.210.156.18:443 | static.trafficjunky.com | tcp |
| US | 1.1.1.1:53 | stats.g.doubleclick.net | udp |
| BE | 64.233.167.155:443 | stats.g.doubleclick.net | tcp |
| US | 1.1.1.1:53 | eg-cdn.trafficjunky.net | udp |
| PL | 93.184.223.43:443 | eg-cdn.trafficjunky.net | tcp |
| US | 1.1.1.1:53 | ht-cdn.trafficjunky.net | udp |
| US | 1.1.1.1:53 | region1.analytics.google.com | udp |
| US | 1.1.1.1:53 | www.google.co.uk | udp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 172.217.169.68:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | ht-cdn.trafficjunky.net | udp |
| US | 1.1.1.1:53 | region1.analytics.google.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 1.1.1.1:53 | video.mnaspm.com | udp |
| US | 1.1.1.1:53 | video.mnaspm.com | udp |
| US | 104.18.40.50:443 | video.mnaspm.com | tcp |
| US | 172.64.147.206:443 | video.mnaspm.com | tcp |
| US | 1.1.1.1:53 | go.mnaspm.com | udp |
| US | 172.64.147.206:443 | go.mnaspm.com | tcp |
| US | 1.1.1.1:53 | em-h.phncdn.com | udp |
| GB | 64.210.156.7:443 | em-h.phncdn.com | tcp |
| GB | 64.210.156.18:443 | ht-cdn.trafficjunky.net | tcp |
| US | 1.1.1.1:53 | ei.phncdn.com | udp |
| GB | 64.210.156.22:443 | ei.phncdn.com | tcp |
| US | 1.1.1.1:53 | th.bing.com | udp |
| US | 1.1.1.1:53 | tse1.explicit.bing.net | udp |
| US | 1.1.1.1:53 | cc.pornoxo.com | udp |
| US | 204.79.197.201:443 | tse1.explicit.bing.net | tcp |
| GB | 184.28.176.114:443 | th.bing.com | tcp |
| US | 1.1.1.1:53 | xhamster.com | udp |
| US | 104.17.35.109:443 | xhamster.com | tcp |
| US | 1.1.1.1:53 | static-ah.xhcdn.com | udp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| US | 1.1.1.1:53 | ic-ut-nss.xhcdn.com | udp |
| GB | 89.187.167.24:443 | ic-ut-nss.xhcdn.com | tcp |
| US | 1.1.1.1:53 | thumb-nss.xhcdn.com | udp |
| GB | 89.187.167.23:443 | thumb-nss.xhcdn.com | tcp |
| US | 1.1.1.1:53 | video7.xhcdn.com | udp |
| GB | 185.185.15.1:443 | video7.xhcdn.com | tcp |
| US | 1.1.1.1:53 | tsyndicate.com | udp |
| DE | 144.76.168.81:443 | tsyndicate.com | tcp |
| US | 1.1.1.1:53 | go.mnaspm.com | udp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.11:443 | tsvideo.sacdnssedge.com | tcp |
| GB | 195.181.164.24:443 | tsvideo.sacdnssedge.com | tcp |
| US | 1.1.1.1:53 | pxl.tsyndicate.com | udp |
| DE | 168.119.1.208:443 | pxl.tsyndicate.com | tcp |
| US | 1.1.1.1:53 | ip230614529.ahcdn.com | udp |
| US | 185.208.130.144:443 | ip230614529.ahcdn.com | tcp |
| US | 1.1.1.1:53 | ip284921638.ahcdn.com | udp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| US | 1.1.1.1:53 | collector.xhamster.com | udp |
| NL | 88.208.5.211:443 | collector.xhamster.com | tcp |
| NL | 88.208.5.211:443 | collector.xhamster.com | tcp |
| US | 1.1.1.1:53 | static-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | cdn.trafficstars.com | udp |
| GB | 89.187.167.23:443 | static-nss.xhcdn.com | tcp |
| US | 1.1.1.1:53 | cdn.trafficstars.com | udp |
| US | 1.1.1.1:53 | video-gcr.xhcdn.com | udp |
| US | 1.1.1.1:53 | lcdn.tsyndicate.com | udp |
| GB | 93.123.11.62:443 | video-gcr.xhcdn.com | tcp |
| US | 1.1.1.1:53 | 19-12.b.cdn13.com | udp |
| US | 1.1.1.1:53 | video3.xhcdn.com | udp |
| SG | 45.133.44.71:443 | lcdn.tsyndicate.com | tcp |
| US | 1.1.1.1:53 | thumb-v-nss.xhcdn.com | udp |
| GB | 89.187.167.23:443 | thumb-v-nss.xhcdn.com | tcp |
| US | 1.1.1.1:53 | ic-vt-nss.xhcdn.com | udp |
| GB | 89.187.167.24:443 | ic-vt-nss.xhcdn.com | tcp |
| SG | 45.133.44.71:443 | lcdn.tsyndicate.com | tcp |
| US | 1.1.1.1:53 | br.xhamster.com | udp |
| US | 1.1.1.1:53 | cz.xhamster.com | udp |
| US | 1.1.1.1:53 | discord.gg | udp |
| US | 1.1.1.1:53 | es.xhamster.com | udp |
| US | 1.1.1.1:53 | faphouse.com | udp |
| US | 1.1.1.1:53 | flirtify.com | udp |
| US | 1.1.1.1:53 | fr.xhamster.com | udp |
| US | 1.1.1.1:53 | ge.xhamster.com | udp |
| US | 1.1.1.1:53 | gr.xhamster.com | udp |
| US | 1.1.1.1:53 | www.asacp.org | udp |
| US | 1.1.1.1:53 | www.youtube.com | udp |
| US | 1.1.1.1:53 | xhamster.uservoice.com | udp |
| US | 1.1.1.1:53 | xhamstercreators.com | udp |
| US | 1.1.1.1:53 | xhamsterlive.com | udp |
| US | 1.1.1.1:53 | xhamsternft.com | udp |
| US | 1.1.1.1:53 | zh.xhamster.com | udp |
| US | 1.1.1.1:53 | hi.xhamster.com | udp |
| US | 1.1.1.1:53 | hu.xhamster.com | udp |
| US | 1.1.1.1:53 | id.xhamster.com | udp |
| US | 1.1.1.1:53 | ita.xhamster.com | udp |
| US | 1.1.1.1:53 | join.flirtify.com | udp |
| US | 1.1.1.1:53 | jp.xhamster.com | udp |
| US | 1.1.1.1:53 | ko.xhamster.com | udp |
| US | 1.1.1.1:53 | my.xhamster.com | udp |
| US | 1.1.1.1:53 | nl.xhamster.com | udp |
| US | 1.1.1.1:53 | pl.xhamster.com | udp |
| US | 1.1.1.1:53 | pt.xhamster.com | udp |
| US | 1.1.1.1:53 | ro.xhamster.com | udp |
| US | 1.1.1.1:53 | rs.xhamster.com | udp |
| US | 1.1.1.1:53 | ru.xhamster.com | udp |
| US | 1.1.1.1:53 | acdn.tsyndicate.com | udp |
| US | 1.1.1.1:53 | sv.xhamster.com | udp |
| US | 1.1.1.1:53 | th.xhamster.com | udp |
| US | 1.1.1.1:53 | tr.xhamster.com | udp |
| SG | 45.133.44.71:443 | acdn.tsyndicate.com | tcp |
| US | 1.1.1.1:53 | trafficstars.com | udp |
| US | 1.1.1.1:53 | ua.xhamster.com | udp |
| US | 1.1.1.1:53 | vi.xhamster.com | udp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.12:443 | tsvideo.sacdnssedge.com | tcp |
| DE | 144.76.168.81:443 | tsyndicate.com | tcp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.24:443 | tsvideo.sacdnssedge.com | tcp |
| US | 1.1.1.1:53 | ic-ut-nss.xhcdn.com | udp |
| DE | 168.119.1.208:443 | pxl.tsyndicate.com | tcp |
| DE | 168.119.1.208:443 | pxl.tsyndicate.com | tcp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.24:443 | tsvideo.sacdnssedge.com | tcp |
| US | 1.1.1.1:53 | go.mnaspm.com | udp |
| US | 1.1.1.1:53 | thumb-nss.xhcdn.com | udp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| GB | 93.123.11.62:443 | video-gcr.xhcdn.com | tcp |
| US | 1.1.1.1:53 | video-b.xhcdn.com | udp |
| US | 1.1.1.1:53 | video-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.12:443 | tsvideo.sacdnssedge.com | tcp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.12:443 | tsvideo.sacdnssedge.com | tcp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| US | 1.1.1.1:53 | thumb-nss.xhcdn.com | udp |
| NL | 45.133.44.22:443 | static-ah.xhcdn.com | tcp |
| US | 1.1.1.1:53 | static-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | thumb-v-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | ic-ut-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | ic-vt-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | ic-ut-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | ic-ut-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | collector.xhamster.com | udp |
| US | 1.1.1.1:53 | collector.xhamster.com | udp |
| US | 1.1.1.1:53 | tsyndicate.com | udp |
| US | 1.1.1.1:53 | video-gcr.xhcdn.com | udp |
| US | 1.1.1.1:53 | video-nss.xhcdn.com | udp |
| US | 1.1.1.1:53 | discord.gg | udp |
| US | 1.1.1.1:53 | ge.xhamster.com | udp |
| DE | 136.243.46.156:443 | tsyndicate.com | tcp |
| US | 1.1.1.1:53 | xhamster.uservoice.com | udp |
| US | 1.1.1.1:53 | xhamstercreators.com | udp |
| US | 1.1.1.1:53 | hi.xhamster.com | udp |
| US | 1.1.1.1:53 | ko.xhamster.com | udp |
| US | 1.1.1.1:53 | ko.xhamster.com | udp |
| US | 1.1.1.1:53 | nl.xhamster.com | udp |
| US | 1.1.1.1:53 | nl.xhamster.com | udp |
| US | 1.1.1.1:53 | nl.xhamster.com | udp |
| US | 1.1.1.1:53 | pt.xhamster.com | udp |
| US | 1.1.1.1:53 | ro.xhamster.com | udp |
| US | 1.1.1.1:53 | vi.xhamster.com | udp |
| US | 1.1.1.1:53 | tsvideo.sacdnssedge.com | udp |
| GB | 195.181.164.12:443 | tsvideo.sacdnssedge.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| US | 185.208.130.158:443 | ip284921638.ahcdn.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | tse1.explicit.bing.net | udp |
| US | 1.1.1.1:53 | th.bing.com | udp |
| GB | 92.123.142.72:443 | th.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| BE | 64.233.167.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.187.228:443 | www.google.com | tcp |
| GB | 172.217.16.238:443 | www.youtube.com | tcp |
Files
files/dom-0.html
| MD5 | e3d0233ad9fb8d79a73787e9ef7368bd |
| SHA1 | 0f25dde34392bfecaf0d60172c7416812b4d3e63 |
| SHA256 | 171ef5bc4e5361e10905c8ed75bf95066c8a02223edcae4954f8c7881d091e7f |
| SHA512 | f4d9a979f5629194ec877bda7adaba315ca898a0f247fd2bb471fb476a8f51b9a1d96adf2d5049a15b1b371f0a951f2744596973cdc1b0a00eef3f12af96f542 |
Analysis: behavioral5
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 09:35
Platform
debian9-armhf-20240418-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral6
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 09:35
Platform
debian9-mipsbe-20240611-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral7
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 09:35
Platform
debian9-mipsel-20240226-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 10:05
Platform
android-x64-20240611.1-en
Max time kernel
378s
Max time network
1791s
Command Line
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 64.233.167.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | google.com | udp |
| GB | 142.250.178.14:80 | google.com | tcp |
| GB | 142.250.178.14:80 | google.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.200.36:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.187.232:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| GB | 142.250.180.14:443 | clients1.google.com | tcp |
| US | 1.1.1.1:53 | apis.google.com | udp |
| GB | 216.58.212.206:443 | apis.google.com | tcp |
| US | 1.1.1.1:53 | play.google.com | udp |
| GB | 142.250.180.14:443 | play.google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 172.217.16.227:443 | update.googleapis.com | tcp |
| GB | 216.58.204.78:443 | android.apis.google.com | tcp |
| GB | 172.217.169.46:443 | tcp | |
| GB | 142.250.178.4:443 | tcp | |
| GB | 142.250.178.4:443 | tcp | |
| GB | 172.217.16.226:443 | tcp | |
| GB | 142.250.178.14:443 | google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| BE | 142.250.110.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.200.36:443 | www.google.com | tcp |
Files
files/dom-0.html
| MD5 | 124dbef1f9cf5c1bb0676cc37d1f337d |
| SHA1 | e5116411cdf2b032e3a7c5ac21bd9b6a40fecfda |
| SHA256 | ed885c4945fc0fde7d4b509c8ba10f7ab0d54f067af9362d8c08eb473f6f99c3 |
| SHA512 | c093957d402339e7ae7e9f26f479db666caef35a2d0e7bcf51fc9010e9dbc9974b3ed2f64481d1202e48be568540c63b72b9c6c2a9ec0e1f4042d9d7f7588e3e |
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 10:05
Platform
android-x64-arm64-20240611.1-en
Max time kernel
1807s
Max time network
1812s
Command Line
Signatures
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.android.chrome
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 172.217.16.234:443 | tcp | |
| GB | 172.217.16.234:443 | tcp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.200.8:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | google.com | udp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 74.125.133.84:443 | accounts.google.com | tcp |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| US | 1.1.1.1:53 | google.com | udp |
| BE | 74.125.133.84:443 | accounts.google.com | tcp |
| GB | 172.217.16.238:80 | google.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.187.228:443 | www.google.com | tcp |
| GB | 172.217.16.238:80 | google.com | tcp |
| US | 1.1.1.1:53 | clients1.google.com | udp |
| US | 1.1.1.1:53 | apis.google.com | udp |
| GB | 142.250.178.14:443 | clients1.google.com | tcp |
| GB | 142.250.179.238:443 | apis.google.com | tcp |
| GB | 142.250.187.206:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 172.217.16.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | play.google.com | udp |
| GB | 216.58.213.14:443 | play.google.com | tcp |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.201.99:443 | update.googleapis.com | tcp |
| GB | 216.58.201.100:443 | tcp | |
| GB | 216.58.201.100:443 | tcp | |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 216.58.213.3:443 | update.googleapis.com | tcp |
| GB | 142.250.187.228:443 | www.google.com | tcp |
| GB | 172.217.169.66:443 | tcp | |
| GB | 172.217.169.3:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 216.58.212.238:443 | android.apis.google.com | tcp |
| GB | 142.250.179.238:443 | apis.google.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
Files
files/dom-0.html
| MD5 | 7dc2210576b5e9c9196101df9f383dda |
| SHA1 | e5045f6ba1f93feefe51d35cfc89efd8601a5b29 |
| SHA256 | 1fff8e09634f9524df14de2538be20b9697b1a553bf539cc1e1c2a82778d5983 |
| SHA512 | f33213b3fe816992d77444bb9afc60b97c5dd3dff02aca51e630eba03a2bbb901c5338d41251d551ceb6e290432a6492f796ac32648b83607196dfa1ec1b209d |
Analysis: behavioral4
Detonation Overview
Submitted
2024-06-14 09:34
Reported
2024-06-14 10:05
Platform
ubuntu1804-amd64-20240611-en
Max time kernel
1s
Max time network
1681s
Command Line
Signatures
Enumerates kernel/hardware configuration
| Description | Indicator | Process | Target |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/device | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/class | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/resource | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/irq | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/vendor | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/device | /usr/lib/firefox/firefox | N/A |
Reads runtime system information
| Description | Indicator | Process | Target |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/self/task/1598/stat | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/stat | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd | /usr/bin/dbus-send | N/A |
| File opened for reading | /proc/self/stat | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/stat | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/task/1611/stat | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd | /usr/bin/dbus-send | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/self/task/1585/stat | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
Processes
/usr/bin/xdg-open
[xdg-open http://google.com]
/usr/bin/dbus-send
[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]
/usr/bin/dbus-launch
[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/bin/grep
[grep = \"xfce4\"$]
/usr/bin/xprop
[xprop -root _DT_SAVE_MODE]
/bin/grep
[grep -i ^xfce_desktop_window]
/usr/bin/xprop
[xprop -root]
/bin/grep
[grep -q ^Enlightenment]
/bin/uname
[uname]
/bin/grep
[grep -q ^file://]
/bin/egrep
[egrep -q ^[[:alpha:]+\.\-]+:]
/usr/local/sbin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/usr/local/bin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/usr/sbin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/usr/bin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/sbin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/bin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/bin/sed
[sed -n s/\(^[[:alnum:]+\.-]*\):.*$/\1/p]
/usr/bin/xdg-mime
[xdg-mime query default x-scheme-handler/http]
/usr/bin/dbus-send
[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]
/usr/bin/dbus-launch
[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/bin/grep
[grep = \"xfce4\"$]
/usr/bin/xprop
[xprop -root _DT_SAVE_MODE]
/bin/grep
[grep -i ^xfce_desktop_window]
/usr/bin/xprop
[xprop -root]
/bin/grep
[grep -q ^Enlightenment]
/bin/uname
[uname]
/bin/sed
[sed s/:/ /g]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/bin/grep
[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]
/usr/bin/head
[head -n 1]
/usr/bin/head
[head -n 1]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/bin/grep
[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]
/usr/bin/head
[head -n 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/cut
[cut -d ; -f 1]
/bin/grep
[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]
/usr/bin/head
[head -n 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/cut
[cut -d ; -f 1]
/bin/grep
[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]
/usr/bin/head
[head -n 1]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/bin/grep
[grep x-scheme-handler/http= /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache]
/bin/sed
[sed s/:/ /g]
/bin/sed
[sed -e s|-|/|]
/bin/sed
[sed -e s|-|/|]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/which
[which firefox]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/firefox
[/usr/bin/firefox http://google.com]
/usr/bin/which
[which /usr/bin/firefox]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox http://google.com]
/bin/grep
[grep -q %s]
/usr/bin/x-www-browser
[x-www-browser http://google.com]
/usr/bin/which
[which /usr/bin/x-www-browser]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox http://google.com]
/bin/grep
[grep -q %s]
/usr/bin/firefox
[firefox http://google.com]
/usr/bin/which
[which /usr/bin/firefox]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox http://google.com]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
/bin/grep
[grep -q %s]
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 185.125.188.62:443 | tcp | |
| GB | 185.125.188.62:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| GB | 89.187.167.3:443 | tcp | |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 91.189.91.98:80 | connectivity-check.ubuntu.com | tcp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| GB | 185.125.190.18:80 | connectivity-check.ubuntu.com | tcp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| GB | 185.125.190.48:80 | connectivity-check.ubuntu.com | tcp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 91.189.91.96:80 | connectivity-check.ubuntu.com | tcp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| GB | 185.125.190.17:80 | connectivity-check.ubuntu.com | tcp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| US | 1.1.1.1:53 | connectivity-check.ubuntu.com | udp |
| GB | 185.125.190.98:80 | connectivity-check.ubuntu.com | tcp |