Analysis

  • max time kernel
    121s
  • max time network
    134s
  • platform
    windows10-ltsc 2021_x64
  • resource
    win10ltsc2021-20241211-en
  • resource tags

    arch:x64arch:x86image:win10ltsc2021-20241211-enlocale:en-usos:windows10-ltsc 2021-x64system
  • submitted
    06-01-2025 08:05

General

  • Target

    win-X32/hmmapi.dll

  • Size

    392.0MB

  • MD5

    072f47192785a8054ca9e103746286c2

  • SHA1

    7c5aa52ebce41048ed03c429d1055a95a172340a

  • SHA256

    504c79eb7107e17d3b41ea2cf47d00876536f8f128fa4e02804eb143bc9150e6

  • SHA512

    5b812e2a66a58eaace08dcfc245cbea7cfeff98e5594b3221db27a0d636a4e7e7d2424041cc95b666b20fbb6b6b907090998b9ea2778f7f1530d13ae1408f9f2

  • SSDEEP

    48:yF3sRB0f93zBIZWyXHYloxaiqq2xqDyVpvv2iw:HUlEWcA2uvv

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\win-X32\hmmapi.dll,#1
    1⤵
      PID:5148
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --string-annotations=is-enterprise-managed=no --field-trial-handle=5020,i,14915339153108214952,13513928827091056845,262144 --variations-seed-version --mojo-platform-channel-handle=4080 /prefetch:8
      1⤵
        PID:884
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --string-annotations=is-enterprise-managed=no --field-trial-handle=3204,i,14915339153108214952,13513928827091056845,262144 --variations-seed-version --mojo-platform-channel-handle=3236 /prefetch:8
        1⤵
          PID:3428

        Network

        • flag-us
          DNS
          104.219.191.52.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          104.219.191.52.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          4.159.190.20.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          4.159.190.20.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          172.214.232.199.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          172.214.232.199.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          edge.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          edge.microsoft.com
          IN A
          Response
          edge.microsoft.com
          IN CNAME
          edge-microsoft-com.dual-a-0036.a-msedge.net
          edge-microsoft-com.dual-a-0036.a-msedge.net
          IN CNAME
          dual-a-0036.a-msedge.net
          dual-a-0036.a-msedge.net
          IN A
          204.79.197.239
          dual-a-0036.a-msedge.net
          IN A
          13.107.21.239
        • flag-us
          DNS
          edge.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          edge.microsoft.com
          IN Unknown
          Response
          edge.microsoft.com
          IN CNAME
          edge-microsoft-com.dual-a-0036.a-msedge.net
        • flag-us
          DNS
          edgeassetservice.azureedge.net
          Remote address:
          8.8.8.8:53
          Request
          edgeassetservice.azureedge.net
          IN A
          Response
          edgeassetservice.azureedge.net
          IN CNAME
          edgeassetservice.afd.azureedge.net
          edgeassetservice.afd.azureedge.net
          IN CNAME
          azureedge-t-prod.trafficmanager.net
          azureedge-t-prod.trafficmanager.net
          IN CNAME
          shed.dual-low.s-part-0036.t-0009.t-msedge.net
          shed.dual-low.s-part-0036.t-0009.t-msedge.net
          IN CNAME
          s-part-0036.t-0009.t-msedge.net
          s-part-0036.t-0009.t-msedge.net
          IN A
          13.107.246.64
        • flag-us
          DNS
          edgeassetservice.azureedge.net
          Remote address:
          8.8.8.8:53
          Request
          edgeassetservice.azureedge.net
          IN Unknown
          Response
          edgeassetservice.azureedge.net
          IN CNAME
          edgeassetservice.afd.azureedge.net
          edgeassetservice.afd.azureedge.net
          IN CNAME
          azureedge-t-prod.trafficmanager.net
          azureedge-t-prod.trafficmanager.net
          IN CNAME
          shed.dual-low.s-part-0036.t-0009.t-msedge.net
          shed.dual-low.s-part-0036.t-0009.t-msedge.net
          IN CNAME
          s-part-0036.t-0009.t-msedge.net
        • flag-gb
          HEAD
          http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
          Remote address:
          2.20.12.74:80
          Request
          HEAD /filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d HTTP/1.1
          Connection: Keep-Alive
          Accept: */*
          Accept-Encoding: identity
          User-Agent: Microsoft BITS/7.8
          Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
        • flag-us
          DNS
          241.150.49.20.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          241.150.49.20.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          fd.api.iris.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          fd.api.iris.microsoft.com
          IN A
          Response
          fd.api.iris.microsoft.com
          IN CNAME
          fd-api-iris.trafficmanager.net
          fd-api-iris.trafficmanager.net
          IN CNAME
          iris-de-prod-azsc-v2-neu.northeurope.cloudapp.azure.com
          iris-de-prod-azsc-v2-neu.northeurope.cloudapp.azure.com
          IN A
          20.223.35.26
        • flag-us
          DNS
          200.163.202.172.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          200.163.202.172.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          206.23.85.13.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          206.23.85.13.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          60.153.16.2.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          60.153.16.2.in-addr.arpa
          IN PTR
          Response
          60.153.16.2.in-addr.arpa
          IN PTR
          a2-16-153-60deploystaticakamaitechnologiescom
        • flag-us
          DNS
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          IN A
          Response
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          IN CNAME
          star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com
          star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com
          IN CNAME
          cdp-f-tlu-net.trafficmanager.net
          cdp-f-tlu-net.trafficmanager.net
          IN CNAME
          wildcard.f.tlu.dl.delivery.mp.microsoft.com.edgesuite.net
          wildcard.f.tlu.dl.delivery.mp.microsoft.com.edgesuite.net
          IN CNAME
          a1847.dscd.akamai.net
          a1847.dscd.akamai.net
          IN A
          88.221.111.25
          a1847.dscd.akamai.net
          IN A
          2.18.240.169
        • flag-it
          HEAD
          http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
          Remote address:
          88.221.111.25:80
          Request
          HEAD /filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d HTTP/1.1
          Connection: Keep-Alive
          Accept: */*
          Accept-Encoding: identity
          User-Agent: Microsoft BITS/7.8
          Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
          Response
          HTTP/1.1 403 Forbidden
          Server: AkamaiGHost
          Mime-Version: 1.0
          Content-Type: text/html
          Content-Length: 505
          Expires: Mon, 06 Jan 2025 08:10:31 GMT
          Date: Mon, 06 Jan 2025 08:10:31 GMT
          Connection: keep-alive
          X-CID: 2
          X-CCC: IT
        • flag-us
          DNS
          25.111.221.88.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          25.111.221.88.in-addr.arpa
          IN PTR
          Response
          25.111.221.88.in-addr.arpa
          IN PTR
          a88-221-111-25deploystaticakamaitechnologiescom
        • flag-us
          DNS
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          IN A
          Response
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          IN CNAME
          star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com
          star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com
          IN CNAME
          cdp-f-tlu-net.trafficmanager.net
          cdp-f-tlu-net.trafficmanager.net
          IN CNAME
          edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          IN CNAME
          default.qdr.p1.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          default.qdr.p1.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          IN A
          91.81.129.182
          default.qdr.p1.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          IN A
          91.81.129.181
          default.qdr.p1.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          IN A
          91.80.49.85
          default.qdr.p1.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          IN A
          91.81.130.134
          default.qdr.p1.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com
          IN A
          91.80.49.22
        • flag-us
          DNS
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          IN Unknown
          Response
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          IN CNAME
          star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com
          star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com
          IN CNAME
          cdp-f-tlu-net.trafficmanager.net
          cdp-f-tlu-net.trafficmanager.net
          IN CNAME
          fg.microsoft.map.fastly.net
        • flag-it
          GET
          http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
          Remote address:
          91.81.129.182:80
          Request
          GET /filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d HTTP/1.1
          Host: msedge.b.tlu.dl.delivery.mp.microsoft.com
          Connection: keep-alive
          Sec-Mesh-Client-Edge-Version: 131.0.2903.86
          Sec-Mesh-Client-Edge-Channel: stable
          Sec-Mesh-Client-OS: Windows
          Sec-Mesh-Client-OS-Version: 10.0.19044
          Sec-Mesh-Client-Arch: x86_64
          Sec-Mesh-Client-WebView: 0
          User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0
          Accept-Encoding: gzip, deflate
          Response
          HTTP/1.1 403 Forbidden
          Date: Mon, 06 Jan 2025 08:10:35 GMT
          Content-Type: text/html
          Content-Length: 543
          Connection: keep-alive
          Server: Qwilt
          X-OC-Service-Type: lo
          Ocn-Cache-Status: NA
          Ocn-Requestid: 10000002a7d3eb7c-1314049194-1
          Ocn-Served-By: QLT
          X-CID: 9
          X-CCC: it
        • flag-us
          DNS
          edge.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          edge.microsoft.com
          IN A
          Response
          edge.microsoft.com
          IN CNAME
          edge-microsoft-com.dual-a-0036.a-msedge.net
          edge-microsoft-com.dual-a-0036.a-msedge.net
          IN CNAME
          dual-a-0036.a-msedge.net
          dual-a-0036.a-msedge.net
          IN A
          13.107.21.239
          dual-a-0036.a-msedge.net
          IN A
          204.79.197.239
        • flag-us
          DNS
          edge.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          edge.microsoft.com
          IN Unknown
          Response
          edge.microsoft.com
          IN CNAME
          edge-microsoft-com.dual-a-0036.a-msedge.net
        • flag-us
          DNS
          182.129.81.91.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          182.129.81.91.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          35.197.79.40.in-addr.arpa
          Remote address:
          8.8.8.8:53
          Request
          35.197.79.40.in-addr.arpa
          IN PTR
          Response
        • flag-us
          DNS
          edge.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          edge.microsoft.com
          IN A
          Response
          edge.microsoft.com
          IN CNAME
          edge-microsoft-com.dual-a-0036.a-msedge.net
          edge-microsoft-com.dual-a-0036.a-msedge.net
          IN CNAME
          dual-a-0036.a-msedge.net
          dual-a-0036.a-msedge.net
          IN A
          13.107.21.239
          dual-a-0036.a-msedge.net
          IN A
          204.79.197.239
        • flag-us
          DNS
          edge.microsoft.com
          Remote address:
          8.8.8.8:53
          Request
          edge.microsoft.com
          IN Unknown
          Response
          edge.microsoft.com
          IN CNAME
          edge-microsoft-com.dual-a-0036.a-msedge.net
        • 204.79.197.239:443
          edge.microsoft.com
          tls
          3.5kB
          8.4kB
          19
          24
        • 13.107.246.64:443
          edgeassetservice.azureedge.net
          tls
          22.7kB
          1.2MB
          434
          837
        • 2.20.12.74:80
          http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
          http
          397 B
          40 B
          1
          1

          HTTP Request

          HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
        • 20.223.35.26:443
          fd.api.iris.microsoft.com
          tls
          624 B
          6.5kB
          9
          6
        • 204.79.197.239:443
          edge.microsoft.com
          46 B
          40 B
          1
          1
        • 88.221.111.25:80
          http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
          http
          593 B
          418 B
          5
          4

          HTTP Request

          HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d

          HTTP Response

          403
        • 91.81.129.182:80
          http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d
          http
          941 B
          995 B
          6
          4

          HTTP Request

          GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/2380abb1-3113-405a-8e34-0406ced73ad5?P1=1734255614&P2=404&P3=2&P4=Q%2fDpc%2bV8DXESEAgyrcl7Q8CZbidqsrX9gd5IZZ8BCeMdhjd3t1egsgpDQf8EvNEm27PhD9TZl7D%2fi%2fNpANRxBw%3d%3d

          HTTP Response

          403
        • 13.107.21.239:443
          edge.microsoft.com
          tls
          5.0kB
          7.6kB
          16
          16
        • 8.8.8.8:53
          104.219.191.52.in-addr.arpa
          dns
          73 B
          147 B
          1
          1

          DNS Request

          104.219.191.52.in-addr.arpa

        • 8.8.8.8:53
          4.159.190.20.in-addr.arpa
          dns
          71 B
          157 B
          1
          1

          DNS Request

          4.159.190.20.in-addr.arpa

        • 8.8.8.8:53
          172.214.232.199.in-addr.arpa
          dns
          74 B
          128 B
          1
          1

          DNS Request

          172.214.232.199.in-addr.arpa

        • 8.8.8.8:53
          edge.microsoft.com
          dns
          64 B
          167 B
          1
          1

          DNS Request

          edge.microsoft.com

          DNS Response

          204.79.197.239
          13.107.21.239

        • 8.8.8.8:53
          edge.microsoft.com
          dns
          64 B
          168 B
          1
          1

          DNS Request

          edge.microsoft.com

        • 8.8.8.8:53
          edgeassetservice.azureedge.net
          dns
          76 B
          243 B
          1
          1

          DNS Request

          edgeassetservice.azureedge.net

          DNS Response

          13.107.246.64

        • 8.8.8.8:53
          edgeassetservice.azureedge.net
          dns
          76 B
          287 B
          1
          1

          DNS Request

          edgeassetservice.azureedge.net

        • 8.8.8.8:53
          241.150.49.20.in-addr.arpa
          dns
          72 B
          158 B
          1
          1

          DNS Request

          241.150.49.20.in-addr.arpa

        • 8.8.8.8:53
          fd.api.iris.microsoft.com
          dns
          71 B
          197 B
          1
          1

          DNS Request

          fd.api.iris.microsoft.com

          DNS Response

          20.223.35.26

        • 8.8.8.8:53
          200.163.202.172.in-addr.arpa
          dns
          74 B
          160 B
          1
          1

          DNS Request

          200.163.202.172.in-addr.arpa

        • 8.8.8.8:53
          206.23.85.13.in-addr.arpa
          dns
          71 B
          145 B
          1
          1

          DNS Request

          206.23.85.13.in-addr.arpa

        • 8.8.8.8:53
          60.153.16.2.in-addr.arpa
          dns
          70 B
          133 B
          1
          1

          DNS Request

          60.153.16.2.in-addr.arpa

        • 8.8.8.8:53
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          dns
          87 B
          328 B
          1
          1

          DNS Request

          msedge.b.tlu.dl.delivery.mp.microsoft.com

          DNS Response

          88.221.111.25
          2.18.240.169

        • 8.8.8.8:53
          25.111.221.88.in-addr.arpa
          dns
          72 B
          137 B
          1
          1

          DNS Request

          25.111.221.88.in-addr.arpa

        • 8.8.8.8:53
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          dns
          87 B
          373 B
          1
          1

          DNS Request

          msedge.b.tlu.dl.delivery.mp.microsoft.com

          DNS Response

          91.81.129.182
          91.81.129.181
          91.80.49.85
          91.81.130.134
          91.80.49.22

        • 8.8.8.8:53
          msedge.b.tlu.dl.delivery.mp.microsoft.com
          dns
          87 B
          292 B
          1
          1

          DNS Request

          msedge.b.tlu.dl.delivery.mp.microsoft.com

        • 8.8.8.8:53
          edge.microsoft.com
          dns
          64 B
          167 B
          1
          1

          DNS Request

          edge.microsoft.com

          DNS Response

          13.107.21.239
          204.79.197.239

        • 8.8.8.8:53
          edge.microsoft.com
          dns
          64 B
          168 B
          1
          1

          DNS Request

          edge.microsoft.com

        • 8.8.8.8:53
          182.129.81.91.in-addr.arpa
          dns
          72 B
          147 B
          1
          1

          DNS Request

          182.129.81.91.in-addr.arpa

        • 8.8.8.8:53
          35.197.79.40.in-addr.arpa
          dns
          71 B
          145 B
          1
          1

          DNS Request

          35.197.79.40.in-addr.arpa

        • 8.8.8.8:53
          edge.microsoft.com
          dns
          64 B
          167 B
          1
          1

          DNS Request

          edge.microsoft.com

          DNS Response

          13.107.21.239
          204.79.197.239

        • 8.8.8.8:53
          edge.microsoft.com
          dns
          64 B
          168 B
          1
          1

          DNS Request

          edge.microsoft.com

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        We care about your privacy.

        This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.