Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
0s -
max time network
242s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240523-en -
resource tags
-
submitted
08/08/2024, 13:32 UTC
General
-
Target
http://bing.com
Score
4/10
Malware Config
Signatures
-
Changes its process name 6 IoCs
-
Enumerates kernel/hardware configuration 1 TTPs 52 IoCs
Reads contents of /sys virtual filesystem to enumerate system information.
-
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
Processes
-
/usr/bin/xdg-openxdg-open http://bing.com1⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager2⤵
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE2⤵
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"2⤵
-
-
/usr/bin/xpropxprop -root2⤵
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "^Enlightenment"2⤵
-
-
/usr/bin/unameuname2⤵
-
-
/usr/bin/grepgrep -q "^file://"2⤵
-
-
/usr/bin/egrepegrep -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
-
/usr/local/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
-
/usr/local/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
-
/usr/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
-
/usr/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
-
/usr/bin/sedsed -n "s/\\(^[[:alnum:]+\\.-]*\\):.*\$/\\1/p"2⤵
- Reads runtime system information
-
-
/usr/bin/xdg-mimexdg-mime query default x-scheme-handler/http2⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager3⤵
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE3⤵
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"3⤵
-
-
/usr/bin/xpropxprop -root3⤵
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"3⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "^Enlightenment"3⤵
- Reads runtime system information
-
-
/usr/bin/unameuname3⤵
-
-
/usr/bin/sedsed "s/:/ /g"3⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache3⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 13⤵
-
-
/usr/bin/cutcut -d "=" -f 23⤵
-
-
/usr/bin/cutcut -d ";" -f 13⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache3⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 13⤵
-
-
/usr/bin/cutcut -d "=" -f 23⤵
-
-
/usr/bin/cutcut -d ";" -f 13⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache3⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 13⤵
-
-
/usr/bin/cutcut -d "=" -f 23⤵
-
-
/usr/bin/cutcut -d ";" -f 13⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache3⤵
-
-
/usr/bin/headhead -n 13⤵
-
-
/usr/bin/cutcut -d "=" -f 23⤵
-
-
/usr/bin/cutcut -d ";" -f 13⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache3⤵
-
-
/usr/bin/headhead -n 13⤵
-
-
/usr/bin/cutcut -d "=" -f 23⤵
-
-
/usr/bin/cutcut -d ";" -f 13⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache3⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 13⤵
-
-
/usr/bin/cutcut -d "=" -f 23⤵
-
-
/usr/bin/cutcut -d ";" -f 13⤵
-
-
/usr/bin/sedsed "s/:/ /g"3⤵
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/.local/share/applications/*.desktop"3⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/usr/local/share//applications/*.desktop"3⤵
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" /usr/share//applications/apport-gtk.desktop /usr/share//applications/bluetooth-sendto.desktop /usr/share//applications/display-im6.q16.desktop /usr/share//applications/gcr-prompter.desktop /usr/share//applications/gcr-viewer.desktop /usr/share//applications/geoclue-demo-agent.desktop /usr/share//applications/gkbd-keyboard-display.desktop /usr/share//applications/gnome-about-panel.desktop /usr/share//applications/gnome-applications-panel.desktop /usr/share//applications/gnome-background-panel.desktop /usr/share//applications/gnome-bluetooth-panel.desktop /usr/share//applications/gnome-color-panel.desktop /usr/share//applications/gnome-datetime-panel.desktop /usr/share//applications/gnome-disk-image-mounter.desktop /usr/share//applications/gnome-disk-image-writer.desktop /usr/share//applications/gnome-display-panel.desktop /usr/share//applications/gnome-initial-setup.desktop /usr/share//applications/gnome-keyboard-panel.desktop /usr/share//applications/gnome-language-selector.desktop /usr/share//applications/gnome-mouse-panel.desktop /usr/share//applications/gnome-multitasking-panel.desktop /usr/share//applications/gnome-network-panel.desktop /usr/share//applications/gnome-notifications-panel.desktop /usr/share//applications/gnome-online-accounts-panel.desktop /usr/share//applications/gnome-power-panel.desktop /usr/share//applications/gnome-printers-panel.desktop /usr/share//applications/gnome-privacy-panel.desktop /usr/share//applications/gnome-region-panel.desktop /usr/share//applications/gnome-search-panel.desktop /usr/share//applications/gnome-session-properties.desktop /usr/share//applications/gnome-sharing-panel.desktop /usr/share//applications/gnome-sound-panel.desktop /usr/share//applications/gnome-system-monitor-kde.desktop /usr/share//applications/gnome-system-panel.desktop /usr/share//applications/gnome-ubuntu-panel.desktop /usr/share//applications/gnome-universal-access-panel.desktop /usr/share//applications/gnome-users-panel.desktop /usr/share//applications/gnome-wacom-panel.desktop /usr/share//applications/gnome-wifi-panel.desktop /usr/share//applications/gnome-wwan-panel.desktop /usr/share//applications/hplj1020.desktop /usr/share//applications/ibus-setup-table.desktop /usr/share//applications/im-config.desktop /usr/share//applications/io.snapcraft.SessionAgent.desktop /usr/share//applications/libreoffice-calc.desktop /usr/share//applications/libreoffice-draw.desktop /usr/share//applications/libreoffice-impress.desktop /usr/share//applications/libreoffice-math.desktop /usr/share//applications/libreoffice-startcenter.desktop /usr/share//applications/libreoffice-writer.desktop /usr/share//applications/libreoffice-xsltfilter.desktop /usr/share//applications/nautilus-autorun-software.desktop /usr/share//applications/nm-applet.desktop /usr/share//applications/nm-connection-editor.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Emojier.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Extension.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Wayland.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Setup.desktop /usr/share//applications/org.freedesktop.Xwayland.desktop /usr/share//applications/org.gnome.Calculator.desktop /usr/share//applications/org.gnome.Calendar.desktop /usr/share//applications/org.gnome.Characters.desktop /usr/share//applications/org.gnome.DejaDup.desktop /usr/share//applications/org.gnome.DiskUtility.desktop /usr/share//applications/org.gnome.Evince-previewer.desktop /usr/share//applications/org.gnome.Evince.desktop /usr/share//applications/org.gnome.Evolution-alarm-notify.desktop /usr/share//applications/org.gnome.FileRoller.desktop /usr/share//applications/org.gnome.Logs.desktop /usr/share//applications/org.gnome.Nautilus.desktop /usr/share//applications/org.gnome.OnlineAccounts.OAuth2.desktop /usr/share//applications/org.gnome.PowerStats.desktop /usr/share//applications/org.gnome.RemoteDesktop.Handover.desktop /usr/share//applications/org.gnome.Rhythmbox3.desktop /usr/share//applications/org.gnome.Rhythmbox3.device.desktop /usr/share//applications/org.gnome.Settings.desktop /usr/share//applications/org.gnome.Shell.Extensions.desktop /usr/share//applications/org.gnome.Shell.PortalHelper.desktop /usr/share//applications/org.gnome.Shell.desktop /usr/share//applications/org.gnome.Shotwell-Viewer.desktop /usr/share//applications/org.gnome.Shotwell.Auth.desktop /usr/share//applications/org.gnome.Shotwell.desktop /usr/share//applications/org.gnome.Snapshot.desktop /usr/share//applications/org.gnome.SystemMonitor.desktop /usr/share//applications/org.gnome.Tecla.desktop /usr/share//applications/org.gnome.Terminal.Preferences.desktop /usr/share//applications/org.gnome.Terminal.desktop /usr/share//applications/org.gnome.TextEditor.desktop /usr/share//applications/org.gnome.Totem.desktop /usr/share//applications/org.gnome.Zenity.desktop /usr/share//applications/org.gnome.baobab.desktop /usr/share//applications/org.gnome.clocks.desktop /usr/share//applications/org.gnome.eog.desktop /usr/share//applications/org.gnome.evolution-data-server.OAuth2-handler.desktop /usr/share//applications/org.gnome.font-viewer.desktop /usr/share//applications/org.gnome.seahorse.Application.desktop /usr/share//applications/org.remmina.Remmina-file.desktop /usr/share//applications/org.remmina.Remmina.desktop /usr/share//applications/python3.12.desktop /usr/share//applications/remmina-gnome.desktop /usr/share//applications/rygel.desktop /usr/share//applications/simple-scan.desktop /usr/share//applications/snap-handle-link.desktop /usr/share//applications/software-properties-drivers.desktop /usr/share//applications/software-properties-gtk.desktop /usr/share//applications/software-properties-livepatch.desktop /usr/share//applications/thunderbird.desktop /usr/share//applications/transmission-gtk.desktop /usr/share//applications/update-manager.desktop /usr/share//applications/usb-creator-gtk.desktop /usr/share//applications/xdg-desktop-portal-gnome.desktop /usr/share//applications/xdg-desktop-portal-gtk.desktop /usr/share//applications/yelp.desktop3⤵
-
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/x-www-browserx-www-browser http://bing.com2⤵
-
/usr/bin/xdg-settingsxdg-settings get default-web-browser3⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager4⤵
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE4⤵
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"4⤵
- Reads runtime system information
-
-
/usr/bin/xpropxprop -root4⤵
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"4⤵
-
-
/usr/bin/grepgrep -q "^Enlightenment"4⤵
- Reads runtime system information
-
-
/usr/bin/unameuname4⤵
-
-
/usr/bin/xdg-mimexdg-mime query default x-scheme-handler/http4⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager5⤵
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE5⤵
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"5⤵
-
-
/usr/bin/xpropxprop -root5⤵
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"5⤵
-
-
/usr/bin/grepgrep -q "^Enlightenment"5⤵
-
-
/usr/bin/unameuname5⤵
-
-
/usr/bin/sedsed "s/:/ /g"5⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache5⤵
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache5⤵
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/sedsed "s/:/ /g"5⤵
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/.local/share/applications/*.desktop"5⤵
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/usr/local/share//applications/*.desktop"5⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" /usr/share//applications/apport-gtk.desktop /usr/share//applications/bluetooth-sendto.desktop /usr/share//applications/display-im6.q16.desktop /usr/share//applications/gcr-prompter.desktop /usr/share//applications/gcr-viewer.desktop /usr/share//applications/geoclue-demo-agent.desktop /usr/share//applications/gkbd-keyboard-display.desktop /usr/share//applications/gnome-about-panel.desktop /usr/share//applications/gnome-applications-panel.desktop /usr/share//applications/gnome-background-panel.desktop /usr/share//applications/gnome-bluetooth-panel.desktop /usr/share//applications/gnome-color-panel.desktop /usr/share//applications/gnome-datetime-panel.desktop /usr/share//applications/gnome-disk-image-mounter.desktop /usr/share//applications/gnome-disk-image-writer.desktop /usr/share//applications/gnome-display-panel.desktop /usr/share//applications/gnome-initial-setup.desktop /usr/share//applications/gnome-keyboard-panel.desktop /usr/share//applications/gnome-language-selector.desktop /usr/share//applications/gnome-mouse-panel.desktop /usr/share//applications/gnome-multitasking-panel.desktop /usr/share//applications/gnome-network-panel.desktop /usr/share//applications/gnome-notifications-panel.desktop /usr/share//applications/gnome-online-accounts-panel.desktop /usr/share//applications/gnome-power-panel.desktop /usr/share//applications/gnome-printers-panel.desktop /usr/share//applications/gnome-privacy-panel.desktop /usr/share//applications/gnome-region-panel.desktop /usr/share//applications/gnome-search-panel.desktop /usr/share//applications/gnome-session-properties.desktop /usr/share//applications/gnome-sharing-panel.desktop /usr/share//applications/gnome-sound-panel.desktop /usr/share//applications/gnome-system-monitor-kde.desktop /usr/share//applications/gnome-system-panel.desktop /usr/share//applications/gnome-ubuntu-panel.desktop /usr/share//applications/gnome-universal-access-panel.desktop /usr/share//applications/gnome-users-panel.desktop /usr/share//applications/gnome-wacom-panel.desktop /usr/share//applications/gnome-wifi-panel.desktop /usr/share//applications/gnome-wwan-panel.desktop /usr/share//applications/hplj1020.desktop /usr/share//applications/ibus-setup-table.desktop /usr/share//applications/im-config.desktop /usr/share//applications/io.snapcraft.SessionAgent.desktop /usr/share//applications/libreoffice-calc.desktop /usr/share//applications/libreoffice-draw.desktop /usr/share//applications/libreoffice-impress.desktop /usr/share//applications/libreoffice-math.desktop /usr/share//applications/libreoffice-startcenter.desktop /usr/share//applications/libreoffice-writer.desktop /usr/share//applications/libreoffice-xsltfilter.desktop /usr/share//applications/nautilus-autorun-software.desktop /usr/share//applications/nm-applet.desktop /usr/share//applications/nm-connection-editor.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Emojier.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Extension.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Wayland.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Setup.desktop /usr/share//applications/org.freedesktop.Xwayland.desktop /usr/share//applications/org.gnome.Calculator.desktop /usr/share//applications/org.gnome.Calendar.desktop /usr/share//applications/org.gnome.Characters.desktop /usr/share//applications/org.gnome.DejaDup.desktop /usr/share//applications/org.gnome.DiskUtility.desktop /usr/share//applications/org.gnome.Evince-previewer.desktop /usr/share//applications/org.gnome.Evince.desktop /usr/share//applications/org.gnome.Evolution-alarm-notify.desktop /usr/share//applications/org.gnome.FileRoller.desktop /usr/share//applications/org.gnome.Logs.desktop /usr/share//applications/org.gnome.Nautilus.desktop /usr/share//applications/org.gnome.OnlineAccounts.OAuth2.desktop /usr/share//applications/org.gnome.PowerStats.desktop /usr/share//applications/org.gnome.RemoteDesktop.Handover.desktop /usr/share//applications/org.gnome.Rhythmbox3.desktop /usr/share//applications/org.gnome.Rhythmbox3.device.desktop /usr/share//applications/org.gnome.Settings.desktop /usr/share//applications/org.gnome.Shell.Extensions.desktop /usr/share//applications/org.gnome.Shell.PortalHelper.desktop /usr/share//applications/org.gnome.Shell.desktop /usr/share//applications/org.gnome.Shotwell-Viewer.desktop /usr/share//applications/org.gnome.Shotwell.Auth.desktop /usr/share//applications/org.gnome.Shotwell.desktop /usr/share//applications/org.gnome.Snapshot.desktop /usr/share//applications/org.gnome.SystemMonitor.desktop /usr/share//applications/org.gnome.Tecla.desktop /usr/share//applications/org.gnome.Terminal.Preferences.desktop /usr/share//applications/org.gnome.Terminal.desktop /usr/share//applications/org.gnome.TextEditor.desktop /usr/share//applications/org.gnome.Totem.desktop /usr/share//applications/org.gnome.Zenity.desktop /usr/share//applications/org.gnome.baobab.desktop /usr/share//applications/org.gnome.clocks.desktop /usr/share//applications/org.gnome.eog.desktop /usr/share//applications/org.gnome.evolution-data-server.OAuth2-handler.desktop /usr/share//applications/org.gnome.font-viewer.desktop /usr/share//applications/org.gnome.seahorse.Application.desktop /usr/share//applications/org.remmina.Remmina-file.desktop /usr/share//applications/org.remmina.Remmina.desktop /usr/share//applications/python3.12.desktop /usr/share//applications/remmina-gnome.desktop /usr/share//applications/rygel.desktop /usr/share//applications/simple-scan.desktop /usr/share//applications/snap-handle-link.desktop /usr/share//applications/software-properties-drivers.desktop /usr/share//applications/software-properties-gtk.desktop /usr/share//applications/software-properties-livepatch.desktop /usr/share//applications/thunderbird.desktop /usr/share//applications/transmission-gtk.desktop /usr/share//applications/update-manager.desktop /usr/share//applications/usb-creator-gtk.desktop /usr/share//applications/xdg-desktop-portal-gnome.desktop /usr/share//applications/xdg-desktop-portal-gtk.desktop /usr/share//applications/yelp.desktop5⤵
- Reads runtime system information
-
-
-
-
/usr/bin/gsettingsgsettings get org.gnome.shell favorite-apps3⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "'firefox.desktop'"3⤵
-
-
/usr/bin/gsettingsgsettings get com.canonical.Unity.Launcher favorites3⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "'application://firefox.desktop'"3⤵
- Reads runtime system information
-
-
/usr/bin/gsettingsgsettings get org.mate.panel object-id-list3⤵
- Reads runtime system information
-
-
/usr/bin/whichwhich qdbus3⤵
-
-
-
/snap/bin/firefox/snap/bin/firefox http://bing.com2⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/usr/lib/snapd/snap-seccomp/usr/lib/snapd/snap-seccomp version-info3⤵
- Enumerates kernel/hardware configuration
-
-
-
/usr/lib/snapd/snap-confine/usr/lib/snapd/snap-confine --base core22 snap.firefox.firefox /usr/lib/snapd/snap-exec firefox http://bing.com2⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/firefoxfirefox http://bing.com2⤵
-
/usr/bin/xdg-settingsxdg-settings get default-web-browser3⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager4⤵
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE4⤵
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"4⤵
- Reads runtime system information
-
-
/usr/bin/xpropxprop -root4⤵
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"4⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "^Enlightenment"4⤵
- Reads runtime system information
-
-
/usr/bin/unameuname4⤵
-
-
/usr/bin/xdg-mimexdg-mime query default x-scheme-handler/http4⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager5⤵
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE5⤵
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"5⤵
- Reads runtime system information
-
-
/usr/bin/xpropxprop -root5⤵
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"5⤵
-
-
/usr/bin/grepgrep -q "^Enlightenment"5⤵
-
-
/usr/bin/unameuname5⤵
-
-
/usr/bin/sedsed "s/:/ /g"5⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache5⤵
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
-
-
/usr/bin/headhead -n 15⤵
-
-
/usr/bin/cutcut -d "=" -f 25⤵
-
-
/usr/bin/cutcut -d ";" -f 15⤵
-
-
/usr/bin/sedsed "s/:/ /g"5⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/.local/share/applications/*.desktop"5⤵
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/usr/local/share//applications/*.desktop"5⤵
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" /usr/share//applications/apport-gtk.desktop /usr/share//applications/bluetooth-sendto.desktop /usr/share//applications/display-im6.q16.desktop /usr/share//applications/gcr-prompter.desktop /usr/share//applications/gcr-viewer.desktop /usr/share//applications/geoclue-demo-agent.desktop /usr/share//applications/gkbd-keyboard-display.desktop /usr/share//applications/gnome-about-panel.desktop /usr/share//applications/gnome-applications-panel.desktop /usr/share//applications/gnome-background-panel.desktop /usr/share//applications/gnome-bluetooth-panel.desktop /usr/share//applications/gnome-color-panel.desktop /usr/share//applications/gnome-datetime-panel.desktop /usr/share//applications/gnome-disk-image-mounter.desktop /usr/share//applications/gnome-disk-image-writer.desktop /usr/share//applications/gnome-display-panel.desktop /usr/share//applications/gnome-initial-setup.desktop /usr/share//applications/gnome-keyboard-panel.desktop /usr/share//applications/gnome-language-selector.desktop /usr/share//applications/gnome-mouse-panel.desktop /usr/share//applications/gnome-multitasking-panel.desktop /usr/share//applications/gnome-network-panel.desktop /usr/share//applications/gnome-notifications-panel.desktop /usr/share//applications/gnome-online-accounts-panel.desktop /usr/share//applications/gnome-power-panel.desktop /usr/share//applications/gnome-printers-panel.desktop /usr/share//applications/gnome-privacy-panel.desktop /usr/share//applications/gnome-region-panel.desktop /usr/share//applications/gnome-search-panel.desktop /usr/share//applications/gnome-session-properties.desktop /usr/share//applications/gnome-sharing-panel.desktop /usr/share//applications/gnome-sound-panel.desktop /usr/share//applications/gnome-system-monitor-kde.desktop /usr/share//applications/gnome-system-panel.desktop /usr/share//applications/gnome-ubuntu-panel.desktop /usr/share//applications/gnome-universal-access-panel.desktop /usr/share//applications/gnome-users-panel.desktop /usr/share//applications/gnome-wacom-panel.desktop /usr/share//applications/gnome-wifi-panel.desktop /usr/share//applications/gnome-wwan-panel.desktop /usr/share//applications/hplj1020.desktop /usr/share//applications/ibus-setup-table.desktop /usr/share//applications/im-config.desktop /usr/share//applications/io.snapcraft.SessionAgent.desktop /usr/share//applications/libreoffice-calc.desktop /usr/share//applications/libreoffice-draw.desktop /usr/share//applications/libreoffice-impress.desktop /usr/share//applications/libreoffice-math.desktop /usr/share//applications/libreoffice-startcenter.desktop /usr/share//applications/libreoffice-writer.desktop /usr/share//applications/libreoffice-xsltfilter.desktop /usr/share//applications/nautilus-autorun-software.desktop /usr/share//applications/nm-applet.desktop /usr/share//applications/nm-connection-editor.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Emojier.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Extension.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Wayland.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Setup.desktop /usr/share//applications/org.freedesktop.Xwayland.desktop /usr/share//applications/org.gnome.Calculator.desktop /usr/share//applications/org.gnome.Calendar.desktop /usr/share//applications/org.gnome.Characters.desktop /usr/share//applications/org.gnome.DejaDup.desktop /usr/share//applications/org.gnome.DiskUtility.desktop /usr/share//applications/org.gnome.Evince-previewer.desktop /usr/share//applications/org.gnome.Evince.desktop /usr/share//applications/org.gnome.Evolution-alarm-notify.desktop /usr/share//applications/org.gnome.FileRoller.desktop /usr/share//applications/org.gnome.Logs.desktop /usr/share//applications/org.gnome.Nautilus.desktop /usr/share//applications/org.gnome.OnlineAccounts.OAuth2.desktop /usr/share//applications/org.gnome.PowerStats.desktop /usr/share//applications/org.gnome.RemoteDesktop.Handover.desktop /usr/share//applications/org.gnome.Rhythmbox3.desktop /usr/share//applications/org.gnome.Rhythmbox3.device.desktop /usr/share//applications/org.gnome.Settings.desktop /usr/share//applications/org.gnome.Shell.Extensions.desktop /usr/share//applications/org.gnome.Shell.PortalHelper.desktop /usr/share//applications/org.gnome.Shell.desktop /usr/share//applications/org.gnome.Shotwell-Viewer.desktop /usr/share//applications/org.gnome.Shotwell.Auth.desktop /usr/share//applications/org.gnome.Shotwell.desktop /usr/share//applications/org.gnome.Snapshot.desktop /usr/share//applications/org.gnome.SystemMonitor.desktop /usr/share//applications/org.gnome.Tecla.desktop /usr/share//applications/org.gnome.Terminal.Preferences.desktop /usr/share//applications/org.gnome.Terminal.desktop /usr/share//applications/org.gnome.TextEditor.desktop /usr/share//applications/org.gnome.Totem.desktop /usr/share//applications/org.gnome.Zenity.desktop /usr/share//applications/org.gnome.baobab.desktop /usr/share//applications/org.gnome.clocks.desktop /usr/share//applications/org.gnome.eog.desktop /usr/share//applications/org.gnome.evolution-data-server.OAuth2-handler.desktop /usr/share//applications/org.gnome.font-viewer.desktop /usr/share//applications/org.gnome.seahorse.Application.desktop /usr/share//applications/org.remmina.Remmina-file.desktop /usr/share//applications/org.remmina.Remmina.desktop /usr/share//applications/python3.12.desktop /usr/share//applications/remmina-gnome.desktop /usr/share//applications/rygel.desktop /usr/share//applications/simple-scan.desktop /usr/share//applications/snap-handle-link.desktop /usr/share//applications/software-properties-drivers.desktop /usr/share//applications/software-properties-gtk.desktop /usr/share//applications/software-properties-livepatch.desktop /usr/share//applications/thunderbird.desktop /usr/share//applications/transmission-gtk.desktop /usr/share//applications/update-manager.desktop /usr/share//applications/usb-creator-gtk.desktop /usr/share//applications/xdg-desktop-portal-gnome.desktop /usr/share//applications/xdg-desktop-portal-gtk.desktop /usr/share//applications/yelp.desktop5⤵
- Reads runtime system information
-
-
-
-
/usr/bin/gsettingsgsettings get org.gnome.shell favorite-apps3⤵
-
-
/usr/bin/grepgrep -q "'firefox.desktop'"3⤵
- Reads runtime system information
-
-
/usr/bin/gsettingsgsettings get com.canonical.Unity.Launcher favorites3⤵
-
-
/usr/bin/grepgrep -q "'application://firefox.desktop'"3⤵
- Reads runtime system information
-
-
/usr/bin/gsettingsgsettings get org.mate.panel object-id-list3⤵
- Reads runtime system information
-
-
/usr/bin/whichwhich qdbus3⤵
-
-
-
/snap/bin/firefox/snap/bin/firefox http://bing.com2⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/usr/lib/snapd/snap-seccomp/usr/lib/snapd/snap-seccomp version-info3⤵
- Enumerates kernel/hardware configuration
-
-
-
/usr/lib/snapd/snap-confine/usr/lib/snapd/snap-confine --base core22 snap.firefox.firefox /usr/lib/snapd/snap-exec firefox http://bing.com2⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
-
/usr/bin/grepgrep -q "%s"2⤵
-
-
/usr/bin/grepgrep -q "%s"2⤵
- Reads runtime system information
-
Network
-
DNSlocation.services.mozilla.comRemote address:8.8.8.8:53Requestlocation.services.mozilla.comIN AResponselocation.services.mozilla.comIN CNAMEprod.classify-client.prod.webservices.mozgcp.netprod.classify-client.prod.webservices.mozgcp.netIN A35.190.72.216 -
DNSlocation.services.mozilla.comRemote address:8.8.8.8:53Requestlocation.services.mozilla.comIN AAAAResponselocation.services.mozilla.comIN CNAMEprod.classify-client.prod.webservices.mozgcp.net
-
DNSprod.classify-client.prod.webservices.mozgcp.netRemote address:8.8.8.8:53Requestprod.classify-client.prod.webservices.mozgcp.netIN AAAAResponse
-
DNSr11.o.lencr.orgRemote address:8.8.8.8:53Requestr11.o.lencr.orgIN AResponser11.o.lencr.orgIN CNAMEo.lencr.edgesuite.neto.lencr.edgesuite.netIN CNAMEa1887.dscq.akamai.neta1887.dscq.akamai.netIN A2.18.190.80a1887.dscq.akamai.netIN A2.18.190.73
-
DNSr11.o.lencr.orgRemote address:8.8.8.8:53Requestr11.o.lencr.orgIN AAAAResponser11.o.lencr.orgIN CNAMEo.lencr.edgesuite.neto.lencr.edgesuite.netIN CNAMEa1887.dscq.akamai.neta1887.dscq.akamai.netIN AAAA2a02:26f0:1780:1a::214:c65a1887.dscq.akamai.netIN AAAA2a02:26f0:1780:1a::214:c64
-
POSThttp://r11.o.lencr.org/Remote address:2.18.190.80:80RequestPOST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Thunderbird/115.10.1
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
ResponseHTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "50BD307E1C5C03F30847122A15985351265CC9E3F577C452295121962EF8C416"
Last-Modified: Tue, 06 Aug 2024 06:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21468
Expires: Thu, 08 Aug 2024 19:32:54 GMT
Date: Thu, 08 Aug 2024 13:35:06 GMT
Connection: keep-alive
-
DNSlive.thunderbird.netRemote address:8.8.8.8:53Requestlive.thunderbird.netIN AResponselive.thunderbird.netIN A104.26.2.27live.thunderbird.netIN A104.26.3.27live.thunderbird.netIN A172.67.74.82
-
DNSlive.thunderbird.netRemote address:8.8.8.8:53Requestlive.thunderbird.netIN AAAAResponselive.thunderbird.netIN AAAA2606:4700:20::681a:21blive.thunderbird.netIN AAAA2606:4700:20::681a:31blive.thunderbird.netIN AAAA2606:4700:20::ac43:4a52
-
DNSsupport.mozilla.orgRemote address:8.8.8.8:53Requestsupport.mozilla.orgIN AResponsesupport.mozilla.orgIN CNAMEprod.sumo.prod.webservices.mozgcp.netprod.sumo.prod.webservices.mozgcp.netIN CNAMEus-west1.prod.sumo.prod.webservices.mozgcp.netus-west1.prod.sumo.prod.webservices.mozgcp.netIN A34.149.128.2
-
DNSsupport.mozilla.orgRemote address:8.8.8.8:53Requestsupport.mozilla.orgIN AAAAResponsesupport.mozilla.orgIN CNAMEprod.sumo.prod.webservices.mozgcp.netprod.sumo.prod.webservices.mozgcp.netIN CNAMEus-west1.prod.sumo.prod.webservices.mozgcp.net
-
DNSautoconfig.thunderbird.netRemote address:8.8.8.8:53Requestautoconfig.thunderbird.netIN AResponseautoconfig.thunderbird.netIN A104.26.2.27autoconfig.thunderbird.netIN A104.26.3.27autoconfig.thunderbird.netIN A172.67.74.82
-
DNSautoconfig.thunderbird.netRemote address:8.8.8.8:53Requestautoconfig.thunderbird.netIN AAAAResponseautoconfig.thunderbird.netIN AAAA2606:4700:20::681a:31bautoconfig.thunderbird.netIN AAAA2606:4700:20::681a:21bautoconfig.thunderbird.netIN AAAA2606:4700:20::ac43:4a52
-
DNSus-west1.prod.sumo.prod.webservices.mozgcp.netRemote address:8.8.8.8:53Requestus-west1.prod.sumo.prod.webservices.mozgcp.netIN AAAAResponse
-
DNSwww.mozilla.orgRemote address:8.8.8.8:53Requestwww.mozilla.orgIN AResponsewww.mozilla.orgIN CNAMEwww.mozorg.moz.workswww.mozorg.moz.worksIN A13.224.77.115
-
DNSwww.mozilla.orgRemote address:8.8.8.8:53Requestwww.mozilla.orgIN AAAAResponsewww.mozilla.orgIN CNAMEwww.mozorg.moz.works
-
DNSwww.mozorg.moz.worksRemote address:8.8.8.8:53Requestwww.mozorg.moz.worksIN AAAAResponse
-
DNSstart.thunderbird.netRemote address:8.8.8.8:53Requeststart.thunderbird.netIN AResponsestart.thunderbird.netIN A172.67.74.82start.thunderbird.netIN A104.26.2.27start.thunderbird.netIN A104.26.3.27
-
DNSstart.thunderbird.netRemote address:8.8.8.8:53Requeststart.thunderbird.netIN AAAAResponsestart.thunderbird.netIN AAAA2606:4700:20::681a:31bstart.thunderbird.netIN AAAA2606:4700:20::681a:21bstart.thunderbird.netIN AAAA2606:4700:20::ac43:4a52
-
DNSmailfence.comRemote address:8.8.8.8:53Requestmailfence.comIN AResponsemailfence.comIN A217.182.28.160
-
DNSmailfence.comRemote address:8.8.8.8:53Requestmailfence.comIN AAAAResponse
-
DNSgandi.netRemote address:8.8.8.8:53Requestgandi.netIN AResponsegandi.netIN A217.70.185.65
-
DNSgandi.netRemote address:8.8.8.8:53Requestgandi.netIN AAAAResponsegandi.netIN AAAA2001:4b98:e03::42
-
DNSwww.gandi.netRemote address:8.8.8.8:53Requestwww.gandi.netIN AResponsewww.gandi.netIN CNAMEdualstack.gandi.map.fastly.netdualstack.gandi.map.fastly.netIN A151.101.65.103dualstack.gandi.map.fastly.netIN A151.101.193.103dualstack.gandi.map.fastly.netIN A151.101.1.103dualstack.gandi.map.fastly.netIN A151.101.129.103
-
DNSwww.gandi.netRemote address:8.8.8.8:53Requestwww.gandi.netIN AAAAResponsewww.gandi.netIN CNAMEdualstack.gandi.map.fastly.netdualstack.gandi.map.fastly.netIN AAAA2a04:4e42:600::359dualstack.gandi.map.fastly.netIN AAAA2a04:4e42:200::359dualstack.gandi.map.fastly.netIN AAAA2a04:4e42:400::359dualstack.gandi.map.fastly.netIN AAAA2a04:4e42::359
-
DNSbroker.thunderbird.netRemote address:8.8.8.8:53Requestbroker.thunderbird.netIN AResponsebroker.thunderbird.netIN A104.26.2.27broker.thunderbird.netIN A104.26.3.27broker.thunderbird.netIN A172.67.74.82
-
DNSbroker.thunderbird.netRemote address:8.8.8.8:53Requestbroker.thunderbird.netIN AAAAResponsebroker.thunderbird.netIN AAAA2606:4700:20::ac43:4a52broker.thunderbird.netIN AAAA2606:4700:20::681a:21bbroker.thunderbird.netIN AAAA2606:4700:20::681a:31b
-
DNSwww.mozorg.moz.worksRemote address:8.8.8.8:53Requestwww.mozorg.moz.worksIN AAAAResponse
-
DNSapi.snapcraft.ioRemote address:8.8.8.8:53Requestapi.snapcraft.ioIN AAAAResponse
-
DNSapi.snapcraft.ioRemote address:8.8.8.8:53Requestapi.snapcraft.ioIN AResponseapi.snapcraft.ioIN A185.125.188.55api.snapcraft.ioIN A185.125.188.59api.snapcraft.ioIN A185.125.188.54api.snapcraft.ioIN A185.125.188.58
-
DNSapi.snapcraft.ioRemote address:8.8.8.8:53Requestapi.snapcraft.ioIN AAAAResponse
-
DNSservices.addons.thunderbird.netRemote address:8.8.8.8:53Requestservices.addons.thunderbird.netIN AResponseservices.addons.thunderbird.netIN CNAMEd1aj75xh157otc.cloudfront.netd1aj75xh157otc.cloudfront.netIN A18.165.160.110d1aj75xh157otc.cloudfront.netIN A18.165.160.60d1aj75xh157otc.cloudfront.netIN A18.165.160.63d1aj75xh157otc.cloudfront.netIN A18.165.160.22
-
DNSservices.addons.thunderbird.netRemote address:8.8.8.8:53Requestservices.addons.thunderbird.netIN AAAAResponseservices.addons.thunderbird.netIN CNAMEd1aj75xh157otc.cloudfront.netd1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:9e00:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:cc00:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:2c00:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:6e00:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:9800:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:de00:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:c400:c:19e4:9800:93a1d1aj75xh157otc.cloudfront.netIN AAAA2600:9000:2438:ec00:c:19e4:9800:93a1
-
DNSthunderbird-settings.thunderbird.netRemote address:8.8.8.8:53Requestthunderbird-settings.thunderbird.netIN AResponsethunderbird-settings.thunderbird.netIN A172.67.74.82thunderbird-settings.thunderbird.netIN A104.26.2.27thunderbird-settings.thunderbird.netIN A104.26.3.27
-
DNSthunderbird-settings.thunderbird.netRemote address:8.8.8.8:53Requestthunderbird-settings.thunderbird.netIN AAAAResponsethunderbird-settings.thunderbird.netIN AAAA2606:4700:20::ac43:4a52thunderbird-settings.thunderbird.netIN AAAA2606:4700:20::681a:31bthunderbird-settings.thunderbird.netIN AAAA2606:4700:20::681a:21b
-
DNSversioncheck-bg.addons.thunderbird.netRemote address:8.8.8.8:53Requestversioncheck-bg.addons.thunderbird.netIN AResponseversioncheck-bg.addons.thunderbird.netIN CNAMEd2yksgaewnzzju.cloudfront.netd2yksgaewnzzju.cloudfront.netIN A54.230.10.19d2yksgaewnzzju.cloudfront.netIN A54.230.10.73d2yksgaewnzzju.cloudfront.netIN A54.230.10.27d2yksgaewnzzju.cloudfront.netIN A54.230.10.69
-
DNSversioncheck-bg.addons.thunderbird.netRemote address:8.8.8.8:53Requestversioncheck-bg.addons.thunderbird.netIN AAAAResponseversioncheck-bg.addons.thunderbird.netIN CNAMEd2yksgaewnzzju.cloudfront.netd2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:e600:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:a00:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:2600:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:7000:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:b200:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:c600:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:4600:4:a73d:6e80:93a1d2yksgaewnzzju.cloudfront.netIN AAAA2600:9000:202a:b600:4:a73d:6e80:93a1
-
DNSaddons.thunderbird.netRemote address:8.8.8.8:53Requestaddons.thunderbird.netIN AResponseaddons.thunderbird.netIN A172.67.74.82addons.thunderbird.netIN A104.26.3.27addons.thunderbird.netIN A104.26.2.27
-
DNSaddons.thunderbird.netRemote address:8.8.8.8:53Requestaddons.thunderbird.netIN AAAAResponseaddons.thunderbird.netIN AAAA2606:4700:20::681a:21baddons.thunderbird.netIN AAAA2606:4700:20::ac43:4a52addons.thunderbird.netIN AAAA2606:4700:20::681a:31b
-
DNSlocation.services.mozilla.comRemote address:8.8.8.8:53Requestlocation.services.mozilla.comIN AAAAResponselocation.services.mozilla.comIN CNAMEprod.classify-client.prod.webservices.mozgcp.net
-
DNSlocation.services.mozilla.comRemote address:8.8.8.8:53Requestlocation.services.mozilla.comIN AResponselocation.services.mozilla.comIN CNAMEprod.classify-client.prod.webservices.mozgcp.netprod.classify-client.prod.webservices.mozgcp.netIN A35.190.72.216
-
DNSprod.classify-client.prod.webservices.mozgcp.netRemote address:8.8.8.8:53Requestprod.classify-client.prod.webservices.mozgcp.netIN AAAAResponse
-
35.190.72.216:443location.services.mozilla.comtls
-
2.18.190.80:80http://r11.o.lencr.org/http
HTTP Request
POST http://r11.o.lencr.org/HTTP Response
200 -
104.26.2.27:443live.thunderbird.nettls
-
104.26.2.27:443live.thunderbird.nettls
-
104.26.2.27:443autoconfig.thunderbird.nettls
-
172.67.74.82:443start.thunderbird.nettls
-
104.26.2.27:443broker.thunderbird.nettls
-
217.182.28.160:443mailfence.comtls -
151.101.65.103:443www.gandi.nettls
-
13.224.77.115:443www.mozilla.orgtls
-
13.224.77.115:443www.mozilla.org
-
13.224.77.115:443www.mozilla.orgtls
-
185.125.188.55:443api.snapcraft.iotls
-
185.125.188.59:443api.snapcraft.iotls
-
172.67.74.82:443thunderbird-settings.thunderbird.nettls
-
18.165.160.110:443services.addons.thunderbird.nettls
-
54.230.10.19:443versioncheck-bg.addons.thunderbird.nettls
-
172.67.74.82:443addons.thunderbird.nettls
-
224.0.0.251:5353 -
8.8.8.8:53location.services.mozilla.comdns
DNS Request
location.services.mozilla.com
DNS Response
35.190.72.216
-
8.8.8.8:53location.services.mozilla.comdns
DNS Request
location.services.mozilla.com
-
8.8.8.8:53prod.classify-client.prod.webservices.mozgcp.netdns
DNS Request
prod.classify-client.prod.webservices.mozgcp.net
-
8.8.8.8:53r11.o.lencr.orgdns
DNS Request
r11.o.lencr.org
DNS Response
2.18.190.802.18.190.73
-
8.8.8.8:53r11.o.lencr.orgdns
DNS Request
r11.o.lencr.org
DNS Response
2a02:26f0:1780:1a::214:c652a02:26f0:1780:1a::214:c64
-
8.8.8.8:53live.thunderbird.netdns
DNS Request
live.thunderbird.net
DNS Response
104.26.2.27104.26.3.27172.67.74.82
-
8.8.8.8:53live.thunderbird.netdns
DNS Request
live.thunderbird.net
DNS Response
2606:4700:20::681a:21b2606:4700:20::681a:31b2606:4700:20::ac43:4a52
-
35.190.72.216:443location.services.mozilla.comhttps
-
8.8.8.8:53support.mozilla.orgdns
DNS Request
support.mozilla.org
DNS Response
34.149.128.2
-
8.8.8.8:53support.mozilla.orgdns
DNS Request
support.mozilla.org
-
104.26.2.27:443live.thunderbird.nethttps
-
8.8.8.8:53autoconfig.thunderbird.netdns
DNS Request
autoconfig.thunderbird.net
DNS Response
104.26.2.27104.26.3.27172.67.74.82
-
8.8.8.8:53autoconfig.thunderbird.netdns
DNS Request
autoconfig.thunderbird.net
DNS Response
2606:4700:20::681a:31b2606:4700:20::681a:21b2606:4700:20::ac43:4a52
-
8.8.8.8:53us-west1.prod.sumo.prod.webservices.mozgcp.netdns
DNS Request
us-west1.prod.sumo.prod.webservices.mozgcp.net
-
8.8.8.8:53www.mozilla.orgdns
DNS Request
www.mozilla.org
DNS Response
13.224.77.115
-
8.8.8.8:53www.mozilla.orgdns
DNS Request
www.mozilla.org
-
8.8.8.8:53www.mozorg.moz.worksdns
DNS Request
www.mozorg.moz.works
-
104.26.2.27:443autoconfig.thunderbird.nethttps
-
8.8.8.8:53start.thunderbird.netdns
DNS Request
start.thunderbird.net
DNS Response
172.67.74.82104.26.2.27104.26.3.27
-
8.8.8.8:53start.thunderbird.netdns
DNS Request
start.thunderbird.net
DNS Response
2606:4700:20::681a:31b2606:4700:20::681a:21b2606:4700:20::ac43:4a52
-
104.26.2.27:443start.thunderbird.nethttps
-
172.67.74.82:443start.thunderbird.nethttps
-
8.8.8.8:53mailfence.comdns
DNS Request
mailfence.com
DNS Response
217.182.28.160
-
8.8.8.8:53mailfence.comdns
DNS Request
mailfence.com
-
8.8.8.8:53gandi.netdns
DNS Request
gandi.net
DNS Response
217.70.185.65
-
8.8.8.8:53gandi.netdns
DNS Request
gandi.net
DNS Response
2001:4b98:e03::42
-
8.8.8.8:53www.gandi.netdns
DNS Request
www.gandi.net
DNS Response
151.101.65.103151.101.193.103151.101.1.103151.101.129.103
-
8.8.8.8:53www.gandi.netdns
DNS Request
www.gandi.net
DNS Response
2a04:4e42:600::3592a04:4e42:200::3592a04:4e42:400::3592a04:4e42::359
-
8.8.8.8:53broker.thunderbird.netdns
DNS Request
broker.thunderbird.net
DNS Response
104.26.2.27104.26.3.27172.67.74.82
-
8.8.8.8:53broker.thunderbird.netdns
DNS Request
broker.thunderbird.net
DNS Response
2606:4700:20::ac43:4a522606:4700:20::681a:21b2606:4700:20::681a:31b
-
104.26.2.27:443broker.thunderbird.nethttps
-
8.8.8.8:53www.mozorg.moz.worksdns
DNS Request
www.mozorg.moz.works
-
8.8.8.8:53api.snapcraft.iodns
DNS Request
api.snapcraft.io
-
8.8.8.8:53api.snapcraft.iodns
DNS Request
api.snapcraft.io
DNS Response
185.125.188.55185.125.188.59185.125.188.54185.125.188.58
-
8.8.8.8:53api.snapcraft.iodns
DNS Request
api.snapcraft.io
-
8.8.8.8:53services.addons.thunderbird.netdns
DNS Request
services.addons.thunderbird.net
DNS Response
18.165.160.11018.165.160.6018.165.160.6318.165.160.22
-
8.8.8.8:53services.addons.thunderbird.netdns
DNS Request
services.addons.thunderbird.net
DNS Response
2600:9000:2438:9e00:c:19e4:9800:93a12600:9000:2438:cc00:c:19e4:9800:93a12600:9000:2438:2c00:c:19e4:9800:93a12600:9000:2438:6e00:c:19e4:9800:93a12600:9000:2438:9800:c:19e4:9800:93a12600:9000:2438:de00:c:19e4:9800:93a12600:9000:2438:c400:c:19e4:9800:93a12600:9000:2438:ec00:c:19e4:9800:93a1
-
8.8.8.8:53thunderbird-settings.thunderbird.netdns
DNS Request
thunderbird-settings.thunderbird.net
DNS Response
172.67.74.82104.26.2.27104.26.3.27
-
8.8.8.8:53thunderbird-settings.thunderbird.netdns
DNS Request
thunderbird-settings.thunderbird.net
DNS Response
2606:4700:20::ac43:4a522606:4700:20::681a:31b2606:4700:20::681a:21b
-
172.67.74.82:443thunderbird-settings.thunderbird.nethttps
-
8.8.8.8:53versioncheck-bg.addons.thunderbird.netdns
DNS Request
versioncheck-bg.addons.thunderbird.net
DNS Response
54.230.10.1954.230.10.7354.230.10.2754.230.10.69
-
8.8.8.8:53versioncheck-bg.addons.thunderbird.netdns
DNS Request
versioncheck-bg.addons.thunderbird.net
DNS Response
2600:9000:202a:e600:4:a73d:6e80:93a12600:9000:202a:a00:4:a73d:6e80:93a12600:9000:202a:2600:4:a73d:6e80:93a12600:9000:202a:7000:4:a73d:6e80:93a12600:9000:202a:b200:4:a73d:6e80:93a12600:9000:202a:c600:4:a73d:6e80:93a12600:9000:202a:4600:4:a73d:6e80:93a12600:9000:202a:b600:4:a73d:6e80:93a1
-
8.8.8.8:53addons.thunderbird.netdns
DNS Request
addons.thunderbird.net
DNS Response
172.67.74.82104.26.3.27104.26.2.27
-
8.8.8.8:53addons.thunderbird.netdns
DNS Request
addons.thunderbird.net
DNS Response
2606:4700:20::681a:21b2606:4700:20::ac43:4a522606:4700:20::681a:31b
-
172.67.74.82:443addons.thunderbird.nethttps
-
8.8.8.8:53location.services.mozilla.comdns
DNS Request
location.services.mozilla.com
-
8.8.8.8:53location.services.mozilla.comdns
DNS Request
location.services.mozilla.com
DNS Response
35.190.72.216
-
8.8.8.8:53prod.classify-client.prod.webservices.mozgcp.netdns
DNS Request
prod.classify-client.prod.webservices.mozgcp.net
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
40B
MD565408163d77c5bbcc5b17dc2e313c93e
SHA1b8891c89ce55f6c1bbe476fd4912a7af296ce79a
SHA256d86e32b299b19c1c03a025d8d5ed026cdf923fc9a1015439cde134b3d13d1fff
SHA512394e2394e44e38210817f5f02779f7b8253c3ff1b4aa816bce7a0b95e40f47094d01cb43ec5e7ec593404f5ddf6fc49bb4175eece231a3cee7c5295e0d9349a7