Malware Analysis Report

2024-10-10 11:34

Sample ID 240614-lj74fsvcqc
Target http://google.com
Tags
score
3/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
3/10

Threat Level: Likely benign

The file http://google.com was found to be: Likely benign.

Malicious Activity Summary


Reads runtime system information

Enumerates kernel/hardware configuration

Checks CPU information

Checks memory information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-14 09:34

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 10:05

Platform

android-x86-arm-20240611.1-en

Max time kernel

1588s

Max time network

1828s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 google.com udp
GB 216.58.201.110:80 google.com tcp
GB 216.58.201.110:80 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
US 1.1.1.1:53 ssl.gstatic.com udp
GB 142.250.200.35:443 ssl.gstatic.com tcp
US 1.1.1.1:53 clients1.google.com udp
GB 142.250.178.14:443 clients1.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
GB 184.28.176.35:443 www.bing.com tcp
GB 184.28.176.35:443 www.bing.com tcp
GB 216.58.212.202:443 tcp
US 1.1.1.1:53 th.bing.com udp
GB 2.18.66.163:443 th.bing.com tcp
GB 2.18.66.163:443 th.bing.com tcp
GB 2.18.66.163:443 th.bing.com tcp
US 1.1.1.1:53 login.microsoftonline.com udp
IE 40.126.31.73:443 login.microsoftonline.com tcp
US 172.64.154.167:443 www2.bing.com tcp
US 1.1.1.1:53 tse1.explicit.bing.net udp
US 131.253.33.201:443 tse1.explicit.bing.net tcp
US 131.253.33.201:443 tse1.explicit.bing.net tcp
US 131.253.33.201:443 tse1.explicit.bing.net tcp
US 131.253.33.201:443 tse1.explicit.bing.net tcp
US 131.253.33.201:443 tse1.explicit.bing.net tcp
US 131.253.33.201:443 tse1.explicit.bing.net tcp
US 1.1.1.1:53 th.bing.com udp
GB 92.123.142.88:443 th.bing.com tcp
US 1.1.1.1:53 www.pornburst.xxx udp
US 104.21.235.125:443 www.pornburst.xxx tcp
US 1.1.1.1:53 pics.pornburst.xxx udp
GB 89.187.167.4:443 pics.pornburst.xxx tcp
GB 89.187.167.4:443 pics.pornburst.xxx tcp
GB 89.187.167.4:443 pics.pornburst.xxx tcp
GB 89.187.167.4:443 pics.pornburst.xxx tcp
GB 89.187.167.4:443 pics.pornburst.xxx tcp
GB 89.187.167.4:443 pics.pornburst.xxx tcp
US 1.1.1.1:53 cdnst4.pornburst.xxx udp
US 1.1.1.1:53 cdnst4.pornburst.xxx udp
US 1.1.1.1:53 imasdk.googleapis.com udp
US 1.1.1.1:53 cdnst4.pornburst.xxx udp
GB 195.181.164.14:443 cdnst4.pornburst.xxx tcp
GB 142.250.187.195:80 tcp
GB 142.250.179.228:443 tcp
GB 195.181.164.19:443 cdnst4.pornburst.xxx tcp
GB 142.250.187.226:443 tcp
GB 216.58.212.227:443 tcp
GB 142.250.178.14:443 clients1.google.com tcp
GB 216.58.212.227:443 tcp
GB 142.250.178.14:443 clients1.google.com tcp
GB 216.58.212.227:443 tcp
GB 216.58.212.227:443 tcp
US 1.1.1.1:53 www.xnxx.com udp
NL 185.88.181.55:443 www.xnxx.com tcp
US 1.1.1.1:53 static-ss.xnxx-cdn.com udp
US 1.1.1.1:53 cdn77-pic.xnxx-cdn.com udp
GB 84.17.50.12:443 cdn77-pic.xnxx-cdn.com tcp
NL 69.55.53.172:443 static-ss.xnxx-cdn.com tcp
NL 69.55.53.172:443 static-ss.xnxx-cdn.com tcp
NL 69.55.53.172:443 static-ss.xnxx-cdn.com tcp
NL 69.55.53.172:443 static-ss.xnxx-cdn.com tcp
US 1.1.1.1:53 cdn77-vid.xnxx-cdn.com udp
GB 89.187.167.51:443 cdn77-vid.xnxx-cdn.com tcp
US 1.1.1.1:53 s.orbsrv.com udp
NL 95.211.229.247:443 s.orbsrv.com tcp
NL 95.211.229.247:443 s.orbsrv.com tcp
US 1.1.1.1:53 u3y8v8u4.aucdn.net udp
US 1.1.1.1:53 u3y8v8u4.aucdn.net udp
GB 89.187.167.8:443 u3y8v8u4.aucdn.net tcp
GB 195.181.164.15:443 u3y8v8u4.aucdn.net tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.201.99:443 update.googleapis.com tcp
NL 185.88.181.55:443 www.xnxx.com tcp
NL 185.88.181.55:443 www.xnxx.com tcp
NL 185.88.181.55:443 www.xnxx.com tcp
NL 69.55.53.172:443 static-ss.xnxx-cdn.com tcp
US 1.1.1.1:53 a.orbsrv.com udp
NL 95.211.229.247:443 s.orbsrv.com tcp
GB 195.181.164.14:443 a.orbsrv.com tcp
NL 95.211.229.247:443 s.orbsrv.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
NL 185.88.181.55:443 www.xnxx.com tcp
US 1.1.1.1:53 tse1.explicit.bing.net udp
US 1.1.1.1:53 th.bing.com udp
US 1.1.1.1:53 www.pornoxo.com udp
NL 45.138.131.125:443 www.pornoxo.com tcp
US 1.1.1.1:53 cc.pornoxo.com udp
US 1.1.1.1:53 cdn.jsdelivr.net udp
US 1.1.1.1:53 code.jquery.com udp
US 1.1.1.1:53 syndication.exoclick.com udp
NL 45.133.44.7:443 cc.pornoxo.com tcp
NL 45.133.44.7:443 cc.pornoxo.com tcp
NL 45.133.44.7:443 cc.pornoxo.com tcp
NL 45.133.44.7:443 cc.pornoxo.com tcp
US 1.1.1.1:53 web-sdk.smartlook.com udp
US 104.18.186.31:443 cdn.jsdelivr.net tcp
GB 89.187.167.2:443 web-sdk.smartlook.com tcp
GB 89.187.167.2:443 web-sdk.smartlook.com tcp
US 1.1.1.1:53 mc.yandex.ru udp
RU 87.250.250.119:443 mc.yandex.ru tcp
RU 87.250.250.119:443 mc.yandex.ru tcp
US 1.1.1.1:53 manager.eu.smartlook.cloud udp
DE 18.194.113.191:443 manager.eu.smartlook.cloud tcp
NL 45.138.131.125:443 www.pornoxo.com tcp
US 1.1.1.1:53 img.strpst.com udp
US 1.1.1.1:53 toplist.cz udp
US 104.17.11.106:443 img.strpst.com tcp
US 104.17.11.106:443 img.strpst.com tcp
US 104.17.11.106:443 img.strpst.com tcp
US 104.17.11.106:443 img.strpst.com tcp
US 104.17.11.106:443 img.strpst.com tcp
US 104.17.11.106:443 img.strpst.com tcp
NL 45.133.44.7:443 cc.pornoxo.com tcp
CZ 88.86.101.2:443 toplist.cz tcp
US 1.1.1.1:53 a.labadena.com udp
DE 94.130.130.77:443 a.labadena.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 a.magsrv.com udp
GB 89.187.167.2:443 a.magsrv.com tcp
US 1.1.1.1:53 mc.webvisor.org udp
US 1.1.1.1:53 mc.yandex.com udp
RU 77.88.21.119:443 mc.yandex.com tcp
US 1.1.1.1:53 s.magsrv.com udp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
US 1.1.1.1:53 th.bing.com udp
US 1.1.1.1:53 tse1.explicit.bing.net udp
NL 45.138.131.125:443 www.pornoxo.com tcp
US 1.1.1.1:53 www.pornoxo.com udp
CZ 88.86.101.2:443 toplist.cz tcp
US 1.1.1.1:53 cc.pornoxo.com udp
US 1.1.1.1:53 web-sdk.smartlook.com udp
NL 45.138.128.185:443 www.pornoxo.com tcp
US 1.1.1.1:53 code.jquery.com udp
US 1.1.1.1:53 cdn.tapioni.com udp
US 104.22.38.71:443 cdn.tapioni.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
NL 95.211.229.247:443 s.magsrv.com tcp
DE 94.130.130.77:443 a.labadena.com tcp
US 1.1.1.1:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.16:443 s3t3d2y8.afcdn.net tcp
US 1.1.1.1:53 chaturbate.com udp
US 1.1.1.1:53 tsyndicate.com udp
US 1.1.1.1:53 twinrdsyn.com udp
NL 95.211.229.247:443 s.magsrv.com tcp
US 104.18.100.40:443 chaturbate.com tcp
US 104.18.100.40:443 chaturbate.com tcp
DE 162.55.130.248:443 tsyndicate.com tcp
US 104.18.34.70:443 twinrdsyn.com tcp
US 1.1.1.1:53 go.xlirdr.com udp
US 104.18.40.50:443 go.xlirdr.com tcp
US 1.1.1.1:53 twinrdsrv.com udp
US 172.66.40.197:443 twinrdsrv.com tcp
US 1.1.1.1:53 go.cambaddies.com udp
NL 185.98.55.81:443 go.cambaddies.com tcp
US 1.1.1.1:53 pxl.tsyndicate.com udp
DE 159.69.137.49:443 pxl.tsyndicate.com tcp
US 1.1.1.1:53 video.sacdnssedge.com udp
US 1.1.1.1:53 video.sacdnssedge.com udp
GB 89.187.167.6:443 video.sacdnssedge.com tcp
GB 195.181.164.19:443 video.sacdnssedge.com tcp
US 1.1.1.1:53 www.pornhub.com udp
US 66.254.114.41:443 www.pornhub.com tcp
US 1.1.1.1:53 media.trafficjunky.net udp
US 1.1.1.1:53 prvc.io udp
US 1.1.1.1:53 cdn1d-static-shared.phncdn.com udp
US 1.1.1.1:53 ads.trafficjunky.net udp
US 1.1.1.1:53 ads2.contentabc.com udp
US 1.1.1.1:53 ajax.googleapis.com udp
GB 64.210.156.17:443 cdn1d-static-shared.phncdn.com tcp
US 104.21.56.52:443 prvc.io tcp
GB 64.210.156.17:443 cdn1d-static-shared.phncdn.com tcp
US 1.1.1.1:53 apis.google.com udp
US 1.1.1.1:53 cdn.feeds.videosz.com udp
US 1.1.1.1:53 cdn.niche.videosz.com udp
US 1.1.1.1:53 cdn1-smallimg.phncdn.com udp
US 1.1.1.1:53 cdn1.ads.contentabc.com udp
US 1.1.1.1:53 di.phncdn.com udp
US 1.1.1.1:53 es.phncdn.com udp
US 1.1.1.1:53 m2.nsimg.net udp
US 1.1.1.1:53 p.twitter.com udp
US 1.1.1.1:53 platform.tumblr.com udp
US 1.1.1.1:53 platform.twitter.com udp
US 1.1.1.1:53 p.twitter.com udp
US 1.1.1.1:53 twitter.com udp
US 1.1.1.1:53 ei.phncdn.com udp
US 1.1.1.1:53 etahub.com udp
US 66.254.114.62:443 etahub.com tcp
US 66.254.114.62:443 etahub.com tcp
US 66.254.114.62:443 etahub.com tcp
US 1.1.1.1:53 evtubescms.phncdn.com udp
US 1.1.1.1:53 evtubescms.phncdn.com udp
GB 64.210.156.0:443 evtubescms.phncdn.com tcp
GB 64.210.156.4:443 evtubescms.phncdn.com tcp
US 104.18.186.31:443 cdn.jsdelivr.net tcp
US 1.1.1.1:53 ee-h.phncdn.com udp
GB 64.210.156.2:443 ee-h.phncdn.com tcp
GB 64.210.156.18:443 ei.phncdn.com tcp
US 1.1.1.1:53 ss.phncdn.com udp
GB 64.210.156.18:443 ss.phncdn.com tcp
GB 64.210.156.18:443 ss.phncdn.com tcp
GB 64.210.156.18:443 ss.phncdn.com tcp
GB 64.210.156.18:443 ss.phncdn.com tcp
GB 64.210.156.18:443 ss.phncdn.com tcp
GB 64.210.156.21:443 ss.phncdn.com tcp
GB 64.210.156.17:443 ss.phncdn.com tcp
US 66.254.114.156:443 cdn1-smallimg.phncdn.com tcp
US 1.1.1.1:53 static.trafficjunky.com udp
GB 64.210.156.21:443 static.trafficjunky.com tcp
GB 64.210.156.18:443 static.trafficjunky.com tcp
US 1.1.1.1:53 stats.g.doubleclick.net udp
BE 64.233.167.155:443 stats.g.doubleclick.net tcp
US 1.1.1.1:53 eg-cdn.trafficjunky.net udp
PL 93.184.223.43:443 eg-cdn.trafficjunky.net tcp
US 1.1.1.1:53 ht-cdn.trafficjunky.net udp
US 1.1.1.1:53 region1.analytics.google.com udp
US 1.1.1.1:53 www.google.co.uk udp
US 1.1.1.1:53 www.google.com udp
GB 172.217.169.68:443 www.google.com tcp
US 1.1.1.1:53 ht-cdn.trafficjunky.net udp
US 1.1.1.1:53 region1.analytics.google.com udp
US 216.239.32.36:443 region1.analytics.google.com tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
US 1.1.1.1:53 video.mnaspm.com udp
US 1.1.1.1:53 video.mnaspm.com udp
US 104.18.40.50:443 video.mnaspm.com tcp
US 172.64.147.206:443 video.mnaspm.com tcp
US 1.1.1.1:53 go.mnaspm.com udp
US 172.64.147.206:443 go.mnaspm.com tcp
US 1.1.1.1:53 em-h.phncdn.com udp
GB 64.210.156.7:443 em-h.phncdn.com tcp
GB 64.210.156.18:443 ht-cdn.trafficjunky.net tcp
US 1.1.1.1:53 ei.phncdn.com udp
GB 64.210.156.22:443 ei.phncdn.com tcp
US 1.1.1.1:53 th.bing.com udp
US 1.1.1.1:53 tse1.explicit.bing.net udp
US 1.1.1.1:53 cc.pornoxo.com udp
US 204.79.197.201:443 tse1.explicit.bing.net tcp
GB 184.28.176.114:443 th.bing.com tcp
US 1.1.1.1:53 xhamster.com udp
US 104.17.35.109:443 xhamster.com tcp
US 1.1.1.1:53 static-ah.xhcdn.com udp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
US 1.1.1.1:53 ic-ut-nss.xhcdn.com udp
GB 89.187.167.24:443 ic-ut-nss.xhcdn.com tcp
US 1.1.1.1:53 thumb-nss.xhcdn.com udp
GB 89.187.167.23:443 thumb-nss.xhcdn.com tcp
US 1.1.1.1:53 video7.xhcdn.com udp
GB 185.185.15.1:443 video7.xhcdn.com tcp
US 1.1.1.1:53 tsyndicate.com udp
DE 144.76.168.81:443 tsyndicate.com tcp
US 1.1.1.1:53 go.mnaspm.com udp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.11:443 tsvideo.sacdnssedge.com tcp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 pxl.tsyndicate.com udp
DE 168.119.1.208:443 pxl.tsyndicate.com tcp
US 1.1.1.1:53 ip230614529.ahcdn.com udp
US 185.208.130.144:443 ip230614529.ahcdn.com tcp
US 1.1.1.1:53 ip284921638.ahcdn.com udp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
US 1.1.1.1:53 collector.xhamster.com udp
NL 88.208.5.211:443 collector.xhamster.com tcp
NL 88.208.5.211:443 collector.xhamster.com tcp
US 1.1.1.1:53 static-nss.xhcdn.com udp
US 1.1.1.1:53 cdn.trafficstars.com udp
GB 89.187.167.23:443 static-nss.xhcdn.com tcp
US 1.1.1.1:53 cdn.trafficstars.com udp
US 1.1.1.1:53 video-gcr.xhcdn.com udp
US 1.1.1.1:53 lcdn.tsyndicate.com udp
GB 93.123.11.62:443 video-gcr.xhcdn.com tcp
US 1.1.1.1:53 19-12.b.cdn13.com udp
US 1.1.1.1:53 video3.xhcdn.com udp
SG 45.133.44.71:443 lcdn.tsyndicate.com tcp
US 1.1.1.1:53 thumb-v-nss.xhcdn.com udp
GB 89.187.167.23:443 thumb-v-nss.xhcdn.com tcp
US 1.1.1.1:53 ic-vt-nss.xhcdn.com udp
GB 89.187.167.24:443 ic-vt-nss.xhcdn.com tcp
SG 45.133.44.71:443 lcdn.tsyndicate.com tcp
US 1.1.1.1:53 br.xhamster.com udp
US 1.1.1.1:53 cz.xhamster.com udp
US 1.1.1.1:53 discord.gg udp
US 1.1.1.1:53 es.xhamster.com udp
US 1.1.1.1:53 faphouse.com udp
US 1.1.1.1:53 flirtify.com udp
US 1.1.1.1:53 fr.xhamster.com udp
US 1.1.1.1:53 ge.xhamster.com udp
US 1.1.1.1:53 gr.xhamster.com udp
US 1.1.1.1:53 www.asacp.org udp
US 1.1.1.1:53 www.youtube.com udp
US 1.1.1.1:53 xhamster.uservoice.com udp
US 1.1.1.1:53 xhamstercreators.com udp
US 1.1.1.1:53 xhamsterlive.com udp
US 1.1.1.1:53 xhamsternft.com udp
US 1.1.1.1:53 zh.xhamster.com udp
US 1.1.1.1:53 hi.xhamster.com udp
US 1.1.1.1:53 hu.xhamster.com udp
US 1.1.1.1:53 id.xhamster.com udp
US 1.1.1.1:53 ita.xhamster.com udp
US 1.1.1.1:53 join.flirtify.com udp
US 1.1.1.1:53 jp.xhamster.com udp
US 1.1.1.1:53 ko.xhamster.com udp
US 1.1.1.1:53 my.xhamster.com udp
US 1.1.1.1:53 nl.xhamster.com udp
US 1.1.1.1:53 pl.xhamster.com udp
US 1.1.1.1:53 pt.xhamster.com udp
US 1.1.1.1:53 ro.xhamster.com udp
US 1.1.1.1:53 rs.xhamster.com udp
US 1.1.1.1:53 ru.xhamster.com udp
US 1.1.1.1:53 acdn.tsyndicate.com udp
US 1.1.1.1:53 sv.xhamster.com udp
US 1.1.1.1:53 th.xhamster.com udp
US 1.1.1.1:53 tr.xhamster.com udp
SG 45.133.44.71:443 acdn.tsyndicate.com tcp
US 1.1.1.1:53 trafficstars.com udp
US 1.1.1.1:53 ua.xhamster.com udp
US 1.1.1.1:53 vi.xhamster.com udp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
DE 144.76.168.81:443 tsyndicate.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 ic-ut-nss.xhcdn.com udp
DE 168.119.1.208:443 pxl.tsyndicate.com tcp
DE 168.119.1.208:443 pxl.tsyndicate.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.24:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 go.mnaspm.com udp
US 1.1.1.1:53 thumb-nss.xhcdn.com udp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
GB 93.123.11.62:443 video-gcr.xhcdn.com tcp
US 1.1.1.1:53 video-b.xhcdn.com udp
US 1.1.1.1:53 video-nss.xhcdn.com udp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
US 1.1.1.1:53 thumb-nss.xhcdn.com udp
NL 45.133.44.22:443 static-ah.xhcdn.com tcp
US 1.1.1.1:53 static-nss.xhcdn.com udp
US 1.1.1.1:53 thumb-v-nss.xhcdn.com udp
US 1.1.1.1:53 ic-ut-nss.xhcdn.com udp
US 1.1.1.1:53 ic-vt-nss.xhcdn.com udp
US 1.1.1.1:53 ic-ut-nss.xhcdn.com udp
US 1.1.1.1:53 ic-ut-nss.xhcdn.com udp
US 1.1.1.1:53 collector.xhamster.com udp
US 1.1.1.1:53 collector.xhamster.com udp
US 1.1.1.1:53 tsyndicate.com udp
US 1.1.1.1:53 video-gcr.xhcdn.com udp
US 1.1.1.1:53 video-nss.xhcdn.com udp
US 1.1.1.1:53 discord.gg udp
US 1.1.1.1:53 ge.xhamster.com udp
DE 136.243.46.156:443 tsyndicate.com tcp
US 1.1.1.1:53 xhamster.uservoice.com udp
US 1.1.1.1:53 xhamstercreators.com udp
US 1.1.1.1:53 hi.xhamster.com udp
US 1.1.1.1:53 ko.xhamster.com udp
US 1.1.1.1:53 ko.xhamster.com udp
US 1.1.1.1:53 nl.xhamster.com udp
US 1.1.1.1:53 nl.xhamster.com udp
US 1.1.1.1:53 nl.xhamster.com udp
US 1.1.1.1:53 pt.xhamster.com udp
US 1.1.1.1:53 ro.xhamster.com udp
US 1.1.1.1:53 vi.xhamster.com udp
US 1.1.1.1:53 tsvideo.sacdnssedge.com udp
GB 195.181.164.12:443 tsvideo.sacdnssedge.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
US 185.208.130.158:443 ip284921638.ahcdn.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 tse1.explicit.bing.net udp
US 1.1.1.1:53 th.bing.com udp
GB 92.123.142.72:443 th.bing.com tcp
US 104.18.33.89:443 www2.bing.com tcp
BE 64.233.167.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.228:443 www.google.com tcp
GB 172.217.16.238:443 www.youtube.com tcp

Files

files/dom-0.html

MD5 e3d0233ad9fb8d79a73787e9ef7368bd
SHA1 0f25dde34392bfecaf0d60172c7416812b4d3e63
SHA256 171ef5bc4e5361e10905c8ed75bf95066c8a02223edcae4954f8c7881d091e7f
SHA512 f4d9a979f5629194ec877bda7adaba315ca898a0f247fd2bb471fb476a8f51b9a1d96adf2d5049a15b1b371f0a951f2744596973cdc1b0a00eef3f12af96f542

Analysis: behavioral5

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 09:35

Platform

debian9-armhf-20240418-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 09:35

Platform

debian9-mipsbe-20240611-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral7

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 09:35

Platform

debian9-mipsel-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 10:05

Platform

android-x64-20240611.1-en

Max time kernel

378s

Max time network

1791s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 accounts.google.com udp
BE 64.233.167.84:443 accounts.google.com tcp
US 1.1.1.1:53 google.com udp
GB 142.250.178.14:80 google.com tcp
GB 142.250.178.14:80 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.187.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 clients1.google.com udp
GB 142.250.180.14:443 clients1.google.com tcp
US 1.1.1.1:53 apis.google.com udp
GB 216.58.212.206:443 apis.google.com tcp
US 1.1.1.1:53 play.google.com udp
GB 142.250.180.14:443 play.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.227:443 update.googleapis.com tcp
GB 216.58.204.78:443 android.apis.google.com tcp
GB 172.217.169.46:443 tcp
GB 142.250.178.4:443 tcp
GB 142.250.178.4:443 tcp
GB 172.217.16.226:443 tcp
GB 142.250.178.14:443 google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
BE 142.250.110.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp

Files

files/dom-0.html

MD5 124dbef1f9cf5c1bb0676cc37d1f337d
SHA1 e5116411cdf2b032e3a7c5ac21bd9b6a40fecfda
SHA256 ed885c4945fc0fde7d4b509c8ba10f7ab0d54f067af9362d8c08eb473f6f99c3
SHA512 c093957d402339e7ae7e9f26f479db666caef35a2d0e7bcf51fc9010e9dbc9974b3ed2f64481d1202e48be568540c63b72b9c6c2a9ec0e1f4042d9d7f7588e3e

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 10:05

Platform

android-x64-arm64-20240611.1-en

Max time kernel

1807s

Max time network

1812s

Command Line

com.android.chrome

Signatures

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.android.chrome

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 172.217.16.234:443 tcp
GB 172.217.16.234:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 accounts.google.com udp
BE 74.125.133.84:443 accounts.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
US 1.1.1.1:53 google.com udp
BE 74.125.133.84:443 accounts.google.com tcp
GB 172.217.16.238:80 google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.228:443 www.google.com tcp
GB 172.217.16.238:80 google.com tcp
US 1.1.1.1:53 clients1.google.com udp
US 1.1.1.1:53 apis.google.com udp
GB 142.250.178.14:443 clients1.google.com tcp
GB 142.250.179.238:443 apis.google.com tcp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
US 1.1.1.1:53 play.google.com udp
GB 216.58.213.14:443 play.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.201.99:443 update.googleapis.com tcp
GB 216.58.201.100:443 tcp
GB 216.58.201.100:443 tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.213.3:443 update.googleapis.com tcp
GB 142.250.187.228:443 www.google.com tcp
GB 172.217.169.66:443 tcp
GB 172.217.169.3:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.238:443 android.apis.google.com tcp
GB 142.250.179.238:443 apis.google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp

Files

files/dom-0.html

MD5 7dc2210576b5e9c9196101df9f383dda
SHA1 e5045f6ba1f93feefe51d35cfc89efd8601a5b29
SHA256 1fff8e09634f9524df14de2538be20b9697b1a553bf539cc1e1c2a82778d5983
SHA512 f33213b3fe816992d77444bb9afc60b97c5dd3dff02aca51e630eba03a2bbb901c5338d41251d551ceb6e290432a6492f796ac32648b83607196dfa1ec1b209d

Analysis: behavioral4

Detonation Overview

Submitted

2024-06-14 09:34

Reported

2024-06-14 10:05

Platform

ubuntu1804-amd64-20240611-en

Max time kernel

1s

Max time network

1681s

Command Line

[xdg-open http://google.com]

Signatures

Enumerates kernel/hardware configuration

Description Indicator Process Target
File opened for reading /sys/bus/pci/devices/0000:00:05.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/device /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/class /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/resource /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/irq /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/vendor /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/device /usr/lib/firefox/firefox N/A

Reads runtime system information

Description Indicator Process Target
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/task/1598/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd /usr/bin/dbus-send N/A
File opened for reading /proc/self/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/task/1611/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd /usr/bin/dbus-send N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/task/1585/stat /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A

Processes

/usr/bin/xdg-open

[xdg-open http://google.com]

/usr/bin/dbus-send

[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/bin/grep

[grep = \"xfce4\"$]

/usr/bin/xprop

[xprop -root _DT_SAVE_MODE]

/bin/grep

[grep -i ^xfce_desktop_window]

/usr/bin/xprop

[xprop -root]

/bin/grep

[grep -q ^Enlightenment]

/bin/uname

[uname]

/bin/grep

[grep -q ^file://]

/bin/egrep

[egrep -q ^[[:alpha:]+\.\-]+:]

/usr/local/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/local/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/bin/sed

[sed -n s/\(^[[:alnum:]+\.-]*\):.*$/\1/p]

/usr/bin/xdg-mime

[xdg-mime query default x-scheme-handler/http]

/usr/bin/dbus-send

[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/bin/grep

[grep = \"xfce4\"$]

/usr/bin/xprop

[xprop -root _DT_SAVE_MODE]

/bin/grep

[grep -i ^xfce_desktop_window]

/usr/bin/xprop

[xprop -root]

/bin/grep

[grep -q ^Enlightenment]

/bin/uname

[uname]

/bin/sed

[sed s/:/ /g]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/bin/grep

[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]

/usr/bin/head

[head -n 1]

/usr/bin/head

[head -n 1]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/bin/grep

[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]

/usr/bin/head

[head -n 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/cut

[cut -d ; -f 1]

/bin/grep

[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]

/usr/bin/head

[head -n 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/cut

[cut -d ; -f 1]

/bin/grep

[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]

/usr/bin/head

[head -n 1]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/bin/grep

[grep x-scheme-handler/http= /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache]

/bin/sed

[sed s/:/ /g]

/bin/sed

[sed -e s|-|/|]

/bin/sed

[sed -e s|-|/|]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/which

[which firefox]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/firefox

[/usr/bin/firefox http://google.com]

/usr/bin/which

[which /usr/bin/firefox]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/bin/grep

[grep -q %s]

/usr/bin/x-www-browser

[x-www-browser http://google.com]

/usr/bin/which

[which /usr/bin/x-www-browser]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/bin/grep

[grep -q %s]

/usr/bin/firefox

[firefox http://google.com]

/usr/bin/which

[which /usr/bin/firefox]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

/bin/grep

[grep -q %s]

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 185.125.188.62:443 tcp
GB 185.125.188.62:443 tcp
US 151.101.193.91:443 tcp
US 151.101.193.91:443 tcp
GB 89.187.167.3:443 tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 91.189.91.98:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.18:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.48:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 91.189.91.96:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.17:80 connectivity-check.ubuntu.com tcp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
US 1.1.1.1:53 connectivity-check.ubuntu.com udp
GB 185.125.190.98:80 connectivity-check.ubuntu.com tcp

Files

N/A