Overview
overview
10Static
static
10virus/Fidd...st.exe
windows10-ltsc 2021-x64
9$PLUGINSDI...up.exe
windows10-ltsc 2021-x64
9$PLUGINSDI...em.dll
windows10-ltsc 2021-x64
3Analytics.dll
windows10-ltsc 2021-x64
1Be.Windows...ox.dll
windows10-ltsc 2021-x64
1DotNetZip.dll
windows10-ltsc 2021-x64
1EnableLoopback.exe
windows10-ltsc 2021-x64
7ExecAction.exe
windows10-ltsc 2021-x64
1FSE2.exe
windows10-ltsc 2021-x64
3Fiddler.exe
windows10-ltsc 2021-x64
4ForceCPU.exe
windows10-ltsc 2021-x64
1GA.Analyti...or.dll
windows10-ltsc 2021-x64
1ImportExpo...ts.dll
windows10-ltsc 2021-x64
1ImportExpo...rt.dll
windows10-ltsc 2021-x64
1Inspectors...on.dll
windows10-ltsc 2021-x64
1Inspectors...or.dll
windows10-ltsc 2021-x64
1Inspectors...es.dll
windows10-ltsc 2021-x64
1Inspectors...ax.dll
windows10-ltsc 2021-x64
1Inspectors...rd.dll
windows10-ltsc 2021-x64
1Inspectors...ew.dll
windows10-ltsc 2021-x64
1Newtonsoft.Json.dll
windows10-ltsc 2021-x64
1Plugins/Ne...ws.dll
windows10-ltsc 2021-x64
1ScriptEdit...cs.dll
windows10-ltsc 2021-x64
1ScriptEdit...or.dll
windows10-ltsc 2021-x64
1ScriptEdit...on.dll
windows10-ltsc 2021-x64
1ScriptEdit...or.dll
windows10-ltsc 2021-x64
1ScriptEdit...rs.dll
windows10-ltsc 2021-x64
1ScriptEdit...ax.dll
windows10-ltsc 2021-x64
1Scripts/Fi...on.dll
windows10-ltsc 2021-x64
1Scripts/Fi...on.dll
windows10-ltsc 2021-x64
1$PLUGINSDI...em.dll
windows10-ltsc 2021-x64
3virus/Froz...ED.exe
windows10-ltsc 2021-x64
10Analysis
-
max time kernel
124s -
max time network
132s -
platform
windows10-ltsc 2021_x64 -
resource
win10ltsc2021-20241211-en -
resource tags
arch:x64arch:x86image:win10ltsc2021-20241211-enlocale:en-usos:windows10-ltsc 2021-x64system -
submitted
11/12/2024, 18:28 UTC
Behavioral task
behavioral1
Sample
virus/FiddlerSetup.5.0.20245.10105-latest.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral2
Sample
$PLUGINSDIR/FiddlerSetup.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral4
Sample
Analytics.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral5
Sample
Be.Windows.Forms.HexBox.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral6
Sample
DotNetZip.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral7
Sample
EnableLoopback.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral8
Sample
ExecAction.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral9
Sample
FSE2.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral10
Sample
Fiddler.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral11
Sample
ForceCPU.exe
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral12
Sample
GA.Analytics.Monitor.dll
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral13
Sample
ImportExport/BasicFormats.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral14
Sample
ImportExport/VSWebTestExport.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral15
Sample
Inspectors/QWhale.Common.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral16
Sample
Inspectors/QWhale.Editor.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral17
Sample
Inspectors/QWhale.Syntax.Schemes.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral18
Sample
Inspectors/QWhale.Syntax.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral19
Sample
Inspectors/Standard.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral20
Sample
Inspectors/SyntaxView.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral21
Sample
Newtonsoft.Json.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral22
Sample
Plugins/NetworkConnections/Telerik.NetworkConnections.Windows.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral23
Sample
ScriptEditor/Analytics.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral24
Sample
ScriptEditor/GA.Analytics.Monitor.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral25
Sample
ScriptEditor/QWhale.Common.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral26
Sample
ScriptEditor/QWhale.Editor.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral27
Sample
ScriptEditor/QWhale.Syntax.Parsers.dll
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral28
Sample
ScriptEditor/QWhale.Syntax.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral29
Sample
Scripts/FiddlerOrchestra.Addon.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral30
Sample
Scripts/FiddlerOrchestra.Connection.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral31
Sample
$PLUGINSDIR/System.dll
Resource
win10ltsc2021-20241211-en
Behavioral task
behavioral32
Sample
virus/FrozenPerm_CRACKED.exe
Resource
win10ltsc2021-20241211-en
General
-
Target
Inspectors/QWhale.Syntax.Schemes.dll
-
Size
284KB
-
MD5
681abb88692a8d2662c527eab350744b
-
SHA1
58bf5fdfa668c2add65a6b7edbb43eab47648821
-
SHA256
9ad5749ba1914101cd4cf2736d0e74bbb8c7abbe93fd5e83377d5cbf33ddb78d
-
SHA512
5f2a370b4bd64e03469ddaa90b7ebd75e588033dbe48ae1b111fa537e56aa13b5bd7e067126d3cc543faf45cd0595ea2355d8fa412197b61f18754e4f9876823
-
SSDEEP
1536:/YiCDgqGqtbeBLmTnNLUSgk9NPOEbg0hIc2Vrl2XuPtlPpXB1sJOm8M93f2AkkgW:abMmTnNLUSgk9NPOEL2Wg1TOV
Malware Config
Signatures
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\Inspectors\QWhale.Syntax.Schemes.dll,#11⤵PID:508
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --string-annotations=is-enterprise-managed=no --field-trial-handle=4084,i,9196809988335597270,13533469875825522379,262144 --variations-seed-version --mojo-platform-channel-handle=4200 /prefetch:81⤵PID:3940
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --string-annotations=is-enterprise-managed=no --field-trial-handle=3212,i,9196809988335597270,13533469875825522379,262144 --variations-seed-version --mojo-platform-channel-handle=5168 /prefetch:81⤵PID:380
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --string-annotations=is-enterprise-managed=no --field-trial-handle=784,i,9196809988335597270,13533469875825522379,262144 --variations-seed-version --mojo-platform-channel-handle=3228 /prefetch:81⤵PID:4844
Network
-
Remote address:8.8.8.8:53Request138.32.126.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request95.221.229.192.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requestedge.microsoft.comIN AResponseedge.microsoft.comIN CNAMEedge-microsoft-com.dual-a-0036.a-msedge.netedge-microsoft-com.dual-a-0036.a-msedge.netIN CNAMEdual-a-0036.a-msedge.netdual-a-0036.a-msedge.netIN A204.79.197.239dual-a-0036.a-msedge.netIN A13.107.21.239
-
Remote address:8.8.8.8:53Requestedge.microsoft.comIN UnknownResponseedge.microsoft.comIN CNAMEedge-microsoft-com.dual-a-0036.a-msedge.net
-
Remote address:8.8.8.8:53Requestedgeassetservice.azureedge.netIN AResponseedgeassetservice.azureedge.netIN CNAMEedgeassetservice.afd.azureedge.netedgeassetservice.afd.azureedge.netIN CNAMEazureedge-t-prod.trafficmanager.netazureedge-t-prod.trafficmanager.netIN CNAMEshed.dual-low.s-part-0036.t-0009.t-msedge.netshed.dual-low.s-part-0036.t-0009.t-msedge.netIN CNAMEs-part-0036.t-0009.t-msedge.nets-part-0036.t-0009.t-msedge.netIN A13.107.246.64
-
Remote address:8.8.8.8:53Requestedgeassetservice.azureedge.netIN UnknownResponseedgeassetservice.azureedge.netIN CNAMEedgeassetservice.afd.azureedge.netedgeassetservice.afd.azureedge.netIN CNAMEazureedge-t-prod.trafficmanager.netazureedge-t-prod.trafficmanager.netIN CNAMEshed.dual-low.s-part-0036.t-0009.t-msedge.netshed.dual-low.s-part-0036.t-0009.t-msedge.netIN CNAMEs-part-0036.t-0009.t-msedge.net
-
HEADhttp://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dRemote address:2.20.12.95:80RequestHEAD /filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
-
Remote address:8.8.8.8:53Request43.229.111.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request73.144.22.2.in-addr.arpaIN PTRResponse73.144.22.2.in-addr.arpaIN PTRa2-22-144-73deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Requestmsedge.b.tlu.dl.delivery.mp.microsoft.comIN AResponsemsedge.b.tlu.dl.delivery.mp.microsoft.comIN CNAMEstar.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.comstar.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.comIN CNAMEcdp-f-tlu-net.trafficmanager.netcdp-f-tlu-net.trafficmanager.netIN CNAMEfg.microsoft.map.fastly.netfg.microsoft.map.fastly.netIN A199.232.210.172fg.microsoft.map.fastly.netIN A199.232.214.172
-
HEADhttp://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dRemote address:199.232.210.172:80RequestHEAD /filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
ResponseHTTP/1.1 200 OK
Content-Length: 4448586
Cache-Control: public, max-age=17280000
Content-Type: application/x-chrome-extension
Last-Modified: Tue, 03 Dec 2024 10:36:31 GMT
ETag: "b8p/pTyDLfK6t4obMRNRbv4MCDA="
MS-CorrelationId: 228f3c50-2747-496a-974e-b28729e1075a
MS-RequestId: 31c0ed07-dc00-462b-976c-4972922f9047
MS-CV: j6fbaIOanUK/tMSP.0
Accept-Ranges: bytes
Date: Wed, 11 Dec 2024 18:30:30 GMT
Via: 1.1 varnish
Age: 150743
X-Served-By: cache-lcy-eglc8600040-LCY
X-Cache: HIT
X-Cache-Hits: 2802
X-Timer: S1733941830.367473,VS0,VE0
X-CID: 3
X-CCC: GB
-
GEThttp://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dRemote address:199.232.210.172:80RequestGET /filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Tue, 03 Dec 2024 10:36:31 GMT
Range: bytes=0-601301
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
ResponseHTTP/1.1 206 Partial Content
Content-Length: 601302
Cache-Control: public, max-age=17280000
Content-Type: application/x-chrome-extension
Last-Modified: Tue, 03 Dec 2024 10:36:31 GMT
ETag: "b8p/pTyDLfK6t4obMRNRbv4MCDA="
MS-CorrelationId: 228f3c50-2747-496a-974e-b28729e1075a
MS-RequestId: 31c0ed07-dc00-462b-976c-4972922f9047
MS-CV: j6fbaIOanUK/tMSP.0
Accept-Ranges: bytes
Date: Wed, 11 Dec 2024 18:30:30 GMT
Via: 1.1 varnish
Age: 150743
X-Served-By: cache-lcy-eglc8600040-LCY
X-Cache: HIT
X-Cache-Hits: 2803
X-Timer: S1733941830.440543,VS0,VE0
X-CID: 3
X-CCC: GB
Content-Range: bytes 0-601301/4448586
-
GEThttp://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dRemote address:199.232.210.172:80RequestGET /filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Tue, 03 Dec 2024 10:36:31 GMT
Range: bytes=601302-2093053
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
ResponseHTTP/1.1 206 Partial Content
Content-Length: 1491752
Cache-Control: public, max-age=17280000
Content-Type: application/x-chrome-extension
Last-Modified: Tue, 03 Dec 2024 10:36:31 GMT
ETag: "b8p/pTyDLfK6t4obMRNRbv4MCDA="
MS-CorrelationId: 228f3c50-2747-496a-974e-b28729e1075a
MS-RequestId: 31c0ed07-dc00-462b-976c-4972922f9047
MS-CV: j6fbaIOanUK/tMSP.0
Accept-Ranges: bytes
Date: Wed, 11 Dec 2024 18:30:31 GMT
Via: 1.1 varnish
Age: 150744
X-Served-By: cache-lcy-eglc8600040-LCY
X-Cache: HIT
X-Cache-Hits: 2805
X-Timer: S1733941832.505556,VS0,VE0
X-CID: 3
X-CCC: GB
Content-Range: bytes 601302-2093053/4448586
-
GEThttp://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dRemote address:199.232.210.172:80RequestGET /filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Tue, 03 Dec 2024 10:36:31 GMT
Range: bytes=2093054-4448585
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
ResponseHTTP/1.1 206 Partial Content
Content-Length: 2355532
Cache-Control: public, max-age=17280000
Content-Type: application/x-chrome-extension
Last-Modified: Tue, 03 Dec 2024 10:36:31 GMT
ETag: "b8p/pTyDLfK6t4obMRNRbv4MCDA="
MS-CorrelationId: 228f3c50-2747-496a-974e-b28729e1075a
MS-RequestId: 31c0ed07-dc00-462b-976c-4972922f9047
MS-CV: j6fbaIOanUK/tMSP.0
Accept-Ranges: bytes
Date: Wed, 11 Dec 2024 18:30:32 GMT
Via: 1.1 varnish
Age: 564468
X-Served-By: cache-lcy-eglc8600040-LCY
X-Cache: HIT
X-Cache-Hits: 105197
X-Timer: S1733941833.564069,VS0,VE0
X-CID: 3
X-CCC: GB
Content-Range: bytes 2093054-4448585/4448586
-
Remote address:8.8.8.8:53Request172.210.232.199.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requestedge.microsoft.comIN AResponseedge.microsoft.comIN CNAMEedge-microsoft-com.dual-a-0036.a-msedge.netedge-microsoft-com.dual-a-0036.a-msedge.netIN CNAMEdual-a-0036.a-msedge.netdual-a-0036.a-msedge.netIN A204.79.197.239dual-a-0036.a-msedge.netIN A13.107.21.239
-
Remote address:8.8.8.8:53Requestedge.microsoft.comIN UnknownResponseedge.microsoft.comIN CNAMEedge-microsoft-com.dual-a-0036.a-msedge.net
-
Remote address:8.8.8.8:53Request26.178.89.13.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requestedge.microsoft.comIN AResponseedge.microsoft.comIN CNAMEedge-microsoft-com.dual-a-0036.a-msedge.netedge-microsoft-com.dual-a-0036.a-msedge.netIN CNAMEdual-a-0036.a-msedge.netdual-a-0036.a-msedge.netIN A13.107.21.239dual-a-0036.a-msedge.netIN A204.79.197.239
-
Remote address:8.8.8.8:53Requestedge.microsoft.comIN UnknownResponseedge.microsoft.comIN CNAMEedge-microsoft-com.dual-a-0036.a-msedge.net
-
3.6kB 8.4kB 19 22
-
23.0kB 1.2MB 435 839
-
2.20.12.95:80http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dhttp395 B 40 B 1 1
HTTP Request
HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3d -
46 B 40 B 1 1
-
46 B 40 B 1 1
-
199.232.210.172:80http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dhttp110.4kB 4.6MB 2109 3301
HTTP Request
HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dHTTP Response
200HTTP Request
GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dHTTP Response
206HTTP Request
GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dHTTP Response
206HTTP Request
GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/9ff6323b-be21-4d0a-848f-4e609840e48d?P1=1734502692&P2=404&P3=2&P4=DHzxgcVyOraMgfL0ccPLX8Qzrtflz85WgR6eTdz%2fs%2bhhAsaDj%2fHCmj92SF0w68rCQe8oP9ns3SM3gLSIXALxNQ%3d%3dHTTP Response
206 -
4.7kB 7.8kB 16 19
-
72 B 158 B 1 1
DNS Request
138.32.126.40.in-addr.arpa
-
73 B 144 B 1 1
DNS Request
95.221.229.192.in-addr.arpa
-
64 B 167 B 1 1
DNS Request
edge.microsoft.com
DNS Response
204.79.197.23913.107.21.239
-
64 B 168 B 1 1
DNS Request
edge.microsoft.com
-
76 B 243 B 1 1
DNS Request
edgeassetservice.azureedge.net
DNS Response
13.107.246.64
-
76 B 287 B 1 1
DNS Request
edgeassetservice.azureedge.net
-
72 B 158 B 1 1
DNS Request
43.229.111.52.in-addr.arpa
-
70 B 133 B 1 1
DNS Request
73.144.22.2.in-addr.arpa
-
87 B 266 B 1 1
DNS Request
msedge.b.tlu.dl.delivery.mp.microsoft.com
DNS Response
199.232.210.172199.232.214.172
-
74 B 128 B 1 1
DNS Request
172.210.232.199.in-addr.arpa
-
64 B 167 B 1 1
DNS Request
edge.microsoft.com
DNS Response
204.79.197.23913.107.21.239
-
64 B 168 B 1 1
DNS Request
edge.microsoft.com
-
71 B 145 B 1 1
DNS Request
26.178.89.13.in-addr.arpa
-
64 B 167 B 1 1
DNS Request
edge.microsoft.com
DNS Response
13.107.21.239204.79.197.239
-
64 B 168 B 1 1
DNS Request
edge.microsoft.com