Edit tour
Windows
Analysis Report
https://www.lieferung-dhl-tracking.de/captcha/calcul_captcha.php
Overview
General Information
| Sample URL: | https://www.lieferung-dhl-tracking.de/captcha/calcul_captcha.php |
| Analysis ID: | 1407151 |
| Infos: | |
 | |
Detection
| Score: | 48 |
| Range: | 0 - 100 |
| Whitelisted: | false |
| Confidence: | 100% |
Signatures
Antivirus / Scanner detection for submitted sample
Uses insecure TLS / SSL version for HTTPS connection
Classification
- System is w10x64
chrome.exe (PID: 6184 cmdline: C:\Program Files\Goo gle\Chrome \Applicati on\chrome. exe" --sta rt-maximiz ed "about: blank MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 5884 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2516 --fi eld-trial- handle=246 0,i,110202 3568291018 8731,17304 4907139414 05481,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction / prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- chrome.exe (PID: 2656 cmdline:
C:\Program Files\Goo gle\Chrome \Applicati on\chrome. exe" "http s://www.li eferung-dh l-tracking .de/captch a/calcul_c aptcha.php MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- cleanup
⊘No configs have been found
⊘No yara matches
⊘No Sigma rule has matched
⊘No Snort rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |   |
|---|
| Source: | Avira URL Cloud: | ||
| Source: | HTTP Parser: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | DNS traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | Classification label: | ||
| Source: | Process created: | |||
| Source: | Process created: | |||
| Source: | Process created: | |||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Process created: | Jump to behavior | ||
| Source: | Window detected: | ||
| Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
| Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
| Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
| Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
InternetThis section contains all screenshots as thumbnails, including those not shown in the slideshow.
| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 100% | Avira URL Cloud | phishing | ||
| 1% | Virustotal | Browse |
⊘No Antivirus matches
⊘No Antivirus matches
| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 0% | Virustotal | Browse | ||
| 0% | Virustotal | Browse |
| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe |
| Name | IP | Active | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|---|---|
| code.jquery.com | 151.101.66.137 | true | false | high | |
| intra.thormighty.com | 193.143.1.54 | true | false | unknown | |
| www.google.com | 142.251.40.196 | true | false | high | |
| fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false |
| unknown |
| windowsupdatebg.s.llnwi.net | 69.164.46.0 | true | false |
| unknown |
| www.lieferung-dhl-tracking.de | unknown | unknown | false | unknown |
| Name | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|
| false |
| unknown | |
| true | unknown | ||
| false | high | ||
| false |
| unknown | |
| false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
| IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
|---|---|---|---|---|---|---|
| 193.143.1.54 | intra.thormighty.com | unknown | 57271 | BITWEB-ASRU | false | |
| 239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
| 142.251.40.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
| 151.101.66.137 | code.jquery.com | United States | 54113 | FASTLYUS | false |
| IP |
|---|
| 192.168.2.6 |
| Joe Sandbox version: | 40.0.0 Tourmaline |
| Analysis ID: | 1407151 |
| Start date and time: | 2024-03-12 01:35:25 +01:00 |
| Joe Sandbox product: | CloudBasic |
| Overall analysis duration: | 0h 3m 1s |
| Hypervisor based Inspection enabled: | false |
| Report type: | full |
| Cookbook file name: | browseurl.jbs |
| Sample URL: | https://www.lieferung-dhl-tracking.de/captcha/calcul_captcha.php |
| Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
| Number of analysed new started processes analysed: | 8 |
| Number of new started drivers analysed: | 0 |
| Number of existing processes analysed: | 0 |
| Number of existing drivers analysed: | 0 |
| Number of injected processes analysed: | 0 |
| Technologies: |
|
| Analysis Mode: | default |
| Analysis stop reason: | Timeout |
| Detection: | MAL |
| Classification: | mal48.win@16/15@8/5 |
| EGA Information: | Failed |
| HCA Information: |
|
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.72.99, 172.253.122.84, 142.250.80.110, 34.104.35.123, 142.250.81.234, 142.251.40.195, 142.251.41.10, 142.250.80.42, 142.250.80.10, 142.250.72.106, 142.250.65.234, 142.251.40.138, 142.251.32.106, 142.251.35.170, 142.250.65.170, 142.250.65.202, 172.217.165.138, 142.251.40.106, 142.251.40.170, 142.250.80.74, 142.251.40.234, 20.114.59.183, 69.164.46.0, 192.229.211.108, 52.165.164.15, 20.242.39.171, 142.250.176.195, 72.21.81.240
- Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, clientservices.googleapis.com, wu.azureedge.net, clients2.google.com, ocsp.digicert.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, sls.update.microsoft.com, update.googleapis.com, hlb.apr-52dd2-0.edgecastdns.net, glb.sls.prod.dcat.dsp.trafficmanager.net, fonts.googleapis.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, fonts.gstatic.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, wu-bg-shim.trafficmanager.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, clients.l.google.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
⊘No simulations
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 400 |
| Entropy (8bit): | 5.253663785090519 |
| Encrypted: | false |
| SSDEEP: | 12:UNAFZ1MO6ZRoT6pSmot2D9KayVVey90H1BGuL/6f7:RvMOYs0oQcwy96DGSSf7 |
| MD5: | B5D032BF6896E4AEE8F7044DE6962E40 |
| SHA1: | 994DD15A1AC66DC7469DB36E21902C0C8591743A |
| SHA-256: | B55F729E8F65ED8CD50504C23FFCB66104C71D9FDA2FD890A7005FBD10CA850D |
| SHA-512: | DD60CCC00A917D44334E9E4A574F3ECD0863CCD75F2B27A8296F0B526C9071C43D83A60760B9D9B684FAFEF2C10BC6E69C1FCFD2D68C8D5C791F5BB3E9416838 |
| Malicious: | false |
| Reputation: | low |
| URL: | https://fonts.googleapis.com/css?family=Yesteryear |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 89795 |
| Entropy (8bit): | 5.290870198529059 |
| Encrypted: | false |
| SSDEEP: | 1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQvg:IeeIygP3fulzhsz8jlvaDioQ47GKH |
| MD5: | 641DD14370106E992D352166F5A07E99 |
| SHA1: | EDA46747C71D38A880BEE44F9A439C3858BB8F99 |
| SHA-256: | A0FE8723DCF55DA64D06B25446D0A8513E52527C45AFCB37073465F9C6F352AF |
| SHA-512: | A6E981B23351186AA43F32879DD64C6801BE6E2AF7EF8B0E472CCCDEEBA52D5D7894DE4BCB292A364F1E11E525524077534338140A72687ADA4FAE62849843A5 |
| Malicious: | false |
| Reputation: | low |
| URL: | https://code.jquery.com/jquery-3.6.4.min.js |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 7506 |
| Entropy (8bit): | 4.398773520649309 |
| Encrypted: | false |
| SSDEEP: | 192:lTHneuEKT7rk5TX3eFrD9PA0cEfrqYHdh6m2H2+T:lTX7zFrD0C6mAT |
| MD5: | B5FDA04ACE943E26B21CC94119862C42 |
| SHA1: | F2EAE6DD76BADDB49D44F34ED2BB2A6D8B62EE11 |
| SHA-256: | F8DC20E8A74614E2AC01F526A174582DF885D2994722DB4BEA8561A2D6B868D5 |
| SHA-512: | 6C65BB0ECF7389AA9A2DDA3598997590F84F864093348FD7462BEA9D1A52AA40781077BBAD9B8158AF36E071B2DB1045FBEFA428CFD2FEC4430B0EFE2DF5C989 |
| Malicious: | false |
| Reputation: | low |
| URL: | https://www.lieferung-dhl-tracking.de/captcha/calcul_captcha.php |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 16 |
| Entropy (8bit): | 3.875 |
| Encrypted: | false |
| SSDEEP: | 3:H+uZYn:euZYn |
| MD5: | 46DF3E5E2D15256CA16616EBFDA5427F |
| SHA1: | BE8F9B307E458075DA0D43585A05F1D451469182 |
| SHA-256: | AF3248D0B278571EFF9A22F8ED1CEB54B70D202B44FD70ECA4CA13A5771CECC3 |
| SHA-512: | 88FBCC0A92317A0BADE7D4B72C023A16792F3728443075BF4B1767C8A55258836B54D56B24EABE36AE4EF240F796B58B8F1EA10C7E3C146BDE89882FC9ADE302 |
| Malicious: | false |
| Reputation: | low |
| URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzQSEAnCSAYRjqFwsBIFDZFhlU4=?alt=proto |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 3252 |
| Entropy (8bit): | 4.898147744926352 |
| Encrypted: | false |
| SSDEEP: | 96:TcVzl1/HccTK3Gc0Gh2/JQOuRpqjww5azlYRpN:TcVz30d10H/JQpWww5azl8H |
| MD5: | EBD56DDCEF92D8BCDF6CA881A3A93C47 |
| SHA1: | 2DDBFB9ABCD89A1D1AB4E1CDB7575880C8A69EF0 |
| SHA-256: | 3DA575F9C89B6EA72E8A1DB112996EC6A41F65CFED8C476B19C21682E9A0CEC1 |
| SHA-512: | BC10A7D4D823735509C8FEF85CCEBBEFFF2399526B4B276E9AF878281EAA35D25F3FC9673382B97D336A225D85815F8525576C45C1E0F2795F36F40FD62D911F |
| Malicious: | false |
| Reputation: | low |
| URL: | https://www.lieferung-dhl-tracking.de/captcha/js/index.js |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | dropped |
| Size (bytes): | 1603 |
| Entropy (8bit): | 5.183926440483353 |
| Encrypted: | false |
| SSDEEP: | 24:2dzAxLfam1lgE2m/X0TbKErfnfSjOunOQzUtD1OsT5:czA5fv4EB/EiErHCOQois1 |
| MD5: | 3FECC9DB35D5D2A9E6E71AB4B02D22E5 |
| SHA1: | 628BA2F505B480097445AAF08649A08242BD6847 |
| SHA-256: | 362BCAA42090E36611031BEC6BDAA0600375EF847092CCA195C58D3BAE9B4419 |
| SHA-512: | C0D70D0F914D3D9F29366C9886F174580675334EC79BA77158C4CF184075540DD7D25B3F35F7129C1FAE764527574DAEC29F5FB8434817CCBEF6951B332CDD5E |
| Malicious: | false |
| Reputation: | low |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 1603 |
| Entropy (8bit): | 5.183926440483353 |
| Encrypted: | false |
| SSDEEP: | 24:2dzAxLfam1lgE2m/X0TbKErfnfSjOunOQzUtD1OsT5:czA5fv4EB/EiErHCOQois1 |
| MD5: | 3FECC9DB35D5D2A9E6E71AB4B02D22E5 |
| SHA1: | 628BA2F505B480097445AAF08649A08242BD6847 |
| SHA-256: | 362BCAA42090E36611031BEC6BDAA0600375EF847092CCA195C58D3BAE9B4419 |
| SHA-512: | C0D70D0F914D3D9F29366C9886F174580675334EC79BA77158C4CF184075540DD7D25B3F35F7129C1FAE764527574DAEC29F5FB8434817CCBEF6951B332CDD5E |
| Malicious: | false |
| Reputation: | low |
| URL: | https://www.lieferung-dhl-tracking.de/img/logo.svg |
| Preview: |
| Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| File Type: | |
| Category: | downloaded |
| Size (bytes): | 808 |
| Entropy (8bit): | 4.9078093738349065 |
| Encrypted: | false |
| SSDEEP: | 24:hYj0XJU5DgGeRpbufLUwDdVJUSdEj7RtiKAo1Mc:PS5gGe/uTUwhVJJEjCKN1h |
| MD5: | A943672A32297727BAB01C3E76977550 |
| SHA1: | 3A667C4B7A457EF6C586CC581D533C128737BF53 |
| SHA-256: | B9347F234DC3C8D56E015E86D88A1400415DB8F7A5AD91F02B6A2323C10A4187 |
| SHA-512: | 0965D415F3A0CEF31953702FDAE345D46FEFD72CE3C4C7A0255AEDE74A76E10B856892700529A444453A622793E0257248C5C99FAE17D5B0B9FD4118E208068C |
| Malicious: | false |
| Reputation: | low |
| URL: | https://www.lieferung-dhl-tracking.de/favicon.ico |
| Preview: |
⊘No static file info
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Mar 12, 2024 01:36:07.923579931 CET | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:07.923604012 CET | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:08.189191103 CET | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:14.279418945 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.279453993 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.279655933 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.280107021 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.280157089 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.280289888 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.280471087 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.280481100 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.280810118 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.280828953 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.807421923 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.807998896 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.808012009 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.809099913 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.809175968 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.809768915 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.826935053 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.827086926 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.827260017 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.827281952 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.828969002 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.829035997 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.829704046 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.829718113 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.831777096 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.831887960 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.874824047 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.874825001 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:14.874842882 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.923748970 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.757870913 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.757904053 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.757911921 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.757966995 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.757987022 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.758007050 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.758044004 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.760314941 CET | 49704 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.760349989 CET | 443 | 49704 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.816904068 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.816936016 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.817055941 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.817491055 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.818286896 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:15.818300009 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.864228964 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.909483910 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:15.909497023 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.909543037 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:15.910170078 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:15.910182953 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.070810080 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.070841074 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.070893049 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.070919991 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.070935965 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.070987940 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.071904898 CET | 49705 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.071918011 CET | 443 | 49705 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.118180037 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.118400097 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.118407011 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.119874001 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.119934082 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.338110924 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.338408947 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.338418961 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.338763952 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.339092970 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.339159966 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.339277983 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.380263090 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.382277966 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.382421970 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.382431984 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.422982931 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.422991037 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.468373060 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.476921082 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492662907 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492674112 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492702007 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492714882 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492721081 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.492726088 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492760897 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.492765903 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492779970 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.492789030 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.492827892 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.510853052 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.510874987 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.510919094 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.510926962 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.510960102 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.562064886 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.578872919 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.578883886 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.578915119 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.578923941 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.578943968 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.578994989 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.579001904 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.579041958 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.594532013 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.594541073 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.594569921 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.594599962 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.594607115 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.594651937 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.594670057 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.607387066 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.607408047 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.607453108 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.607459068 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.607491970 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.607511044 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.611867905 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.611928940 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.611936092 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.611955881 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.612000942 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.612968922 CET | 49710 | 443 | 192.168.2.6 | 151.101.66.137 |
| Mar 12, 2024 01:36:16.612981081 CET | 443 | 49710 | 151.101.66.137 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.727730036 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.727787018 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.727936029 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.728653908 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.728707075 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.772191048 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:16.772214890 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.772315979 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:16.773078918 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:16.773089886 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.808572054 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.808605909 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.808689117 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.808718920 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.811466932 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.811947107 CET | 49708 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.811969995 CET | 443 | 49708 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.860666990 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.860697985 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.862617970 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.862947941 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:16.862965107 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.053754091 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.054024935 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:17.054034948 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.055500984 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.055612087 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:17.057080984 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:17.057252884 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.101922035 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:17.101944923 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.143182993 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:17.236927032 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.244227886 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.244256973 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.245392084 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.245578051 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.246015072 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.246088982 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.246400118 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.246417046 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.297061920 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.384537935 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.384891033 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.384908915 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.386034966 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.388122082 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.388354063 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.388360977 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.388957024 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.440327883 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.441009998 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.441056967 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.441132069 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.446471930 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.446490049 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.529642105 CET | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:17.529643059 CET | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:17.701240063 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.701270103 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.701318979 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.701335907 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.701351881 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.701399088 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.703154087 CET | 49712 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.703171968 CET | 443 | 49712 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.778512001 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.778583050 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.782933950 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.782943964 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.783289909 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.796919107 CET | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:17.828460932 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.847749949 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.847839117 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.847881079 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.849093914 CET | 49714 | 443 | 192.168.2.6 | 193.143.1.54 |
| Mar 12, 2024 01:36:17.849112988 CET | 443 | 49714 | 193.143.1.54 | 192.168.2.6 |
| Mar 12, 2024 01:36:17.863163948 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:17.904241085 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:18.091896057 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:18.091958046 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:18.092001915 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:18.257605076 CET | 49716 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:18.257621050 CET | 443 | 49716 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.202322006 CET | 443 | 49698 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.202563047 CET | 49698 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:19.472071886 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:19.472095966 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.472178936 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:19.474519014 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:19.474531889 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.810308933 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.810383081 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:19.811984062 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:19.812000990 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.812395096 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:19.814613104 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:19.860255957 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:20.128319025 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:20.128446102 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:20.128495932 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:20.130705118 CET | 49717 | 443 | 192.168.2.6 | 104.91.61.188 |
| Mar 12, 2024 01:36:20.130712986 CET | 443 | 49717 | 104.91.61.188 | 192.168.2.6 |
| Mar 12, 2024 01:36:27.084734917 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:27.084851027 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:27.084920883 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:28.696574926 CET | 49713 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:36:28.696588039 CET | 443 | 49713 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:36:31.187609911 CET | 49698 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:31.188615084 CET | 49698 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:31.189013958 CET | 49725 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:31.189040899 CET | 443 | 49725 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:31.189177990 CET | 49725 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:31.189671993 CET | 49725 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:31.189687967 CET | 443 | 49725 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:31.351452112 CET | 443 | 49698 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:31.352381945 CET | 443 | 49698 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:31.538511992 CET | 443 | 49725 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:31.538600922 CET | 49725 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:36:50.691051960 CET | 443 | 49725 | 173.222.162.64 | 192.168.2.6 |
| Mar 12, 2024 01:36:50.691147089 CET | 49725 | 443 | 192.168.2.6 | 173.222.162.64 |
| Mar 12, 2024 01:37:16.842305899 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:16.842351913 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:16.842484951 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:16.844928980 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:16.844959974 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:17.117393017 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:17.120035887 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:17.120071888 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:17.120524883 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:17.122024059 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:17.122102022 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:17.162050962 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:27.146641016 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:27.146713018 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Mar 12, 2024 01:37:27.146781921 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:28.634249926 CET | 49728 | 443 | 192.168.2.6 | 142.251.40.196 |
| Mar 12, 2024 01:37:28.634291887 CET | 443 | 49728 | 142.251.40.196 | 192.168.2.6 |
| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Mar 12, 2024 01:36:12.354394913 CET | 53 | 64011 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:12.453639030 CET | 53 | 60003 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:13.017966986 CET | 53 | 60025 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:13.918543100 CET | 62049 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:13.918744087 CET | 65065 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:14.258739948 CET | 53 | 62049 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:14.278706074 CET | 53 | 65065 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.813205004 CET | 55655 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:15.814126968 CET | 53302 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:15.905215025 CET | 53 | 51773 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.908030033 CET | 53 | 53302 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:15.908802986 CET | 53 | 55655 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.392227888 CET | 55573 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:16.393656969 CET | 53404 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:16.590879917 CET | 53 | 57741 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.675774097 CET | 49554 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:16.676597118 CET | 55027 | 53 | 192.168.2.6 | 1.1.1.1 |
| Mar 12, 2024 01:36:16.714097977 CET | 53 | 53404 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.725250006 CET | 53 | 55573 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.768716097 CET | 53 | 49554 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.770458937 CET | 53 | 55027 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:16.953440905 CET | 53 | 56632 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:30.802866936 CET | 53 | 62678 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:36:49.896464109 CET | 53 | 51371 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:37:12.132581949 CET | 53 | 52374 | 1.1.1.1 | 192.168.2.6 |
| Mar 12, 2024 01:37:12.265860081 CET | 53 | 53168 | 1.1.1.1 | 192.168.2.6 |
| Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
|---|---|---|---|---|---|---|---|---|
| Mar 12, 2024 01:36:13.918543100 CET | 192.168.2.6 | 1.1.1.1 | 0xff7a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Mar 12, 2024 01:36:13.918744087 CET | 192.168.2.6 | 1.1.1.1 | 0x8673 | Standard query (0) | 65 | IN (0x0001) | false | |
| Mar 12, 2024 01:36:15.813205004 CET | 192.168.2.6 | 1.1.1.1 | 0xa45c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Mar 12, 2024 01:36:15.814126968 CET | 192.168.2.6 | 1.1.1.1 | 0x3bb7 | Standard query (0) | 65 | IN (0x0001) | false | |
| Mar 12, 2024 01:36:16.392227888 CET | 192.168.2.6 | 1.1.1.1 | 0x2c65 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Mar 12, 2024 01:36:16.393656969 CET | 192.168.2.6 | 1.1.1.1 | 0x7356 | Standard query (0) | 65 | IN (0x0001) | false | |
| Mar 12, 2024 01:36:16.675774097 CET | 192.168.2.6 | 1.1.1.1 | 0xec3f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Mar 12, 2024 01:36:16.676597118 CET | 192.168.2.6 | 1.1.1.1 | 0xbd2 | Standard query (0) | 65 | IN (0x0001) | false |
| Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
|---|---|---|---|---|---|---|---|---|---|---|
| Mar 12, 2024 01:36:14.258739948 CET | 1.1.1.1 | 192.168.2.6 | 0xff7a | No error (0) | intra.thormighty.com | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:14.258739948 CET | 1.1.1.1 | 192.168.2.6 | 0xff7a | No error (0) | 193.143.1.54 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:14.278706074 CET | 1.1.1.1 | 192.168.2.6 | 0x8673 | No error (0) | intra.thormighty.com | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:15.908802986 CET | 1.1.1.1 | 192.168.2.6 | 0xa45c | No error (0) | 151.101.66.137 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:15.908802986 CET | 1.1.1.1 | 192.168.2.6 | 0xa45c | No error (0) | 151.101.194.137 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:15.908802986 CET | 1.1.1.1 | 192.168.2.6 | 0xa45c | No error (0) | 151.101.2.137 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:15.908802986 CET | 1.1.1.1 | 192.168.2.6 | 0xa45c | No error (0) | 151.101.130.137 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:16.714097977 CET | 1.1.1.1 | 192.168.2.6 | 0x7356 | No error (0) | intra.thormighty.com | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:16.725250006 CET | 1.1.1.1 | 192.168.2.6 | 0x2c65 | No error (0) | intra.thormighty.com | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:16.725250006 CET | 1.1.1.1 | 192.168.2.6 | 0x2c65 | No error (0) | 193.143.1.54 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:16.768716097 CET | 1.1.1.1 | 192.168.2.6 | 0xec3f | No error (0) | 142.251.40.196 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:16.770458937 CET | 1.1.1.1 | 192.168.2.6 | 0xbd2 | No error (0) | 65 | IN (0x0001) | false | |||
| Mar 12, 2024 01:36:29.072189093 CET | 1.1.1.1 | 192.168.2.6 | 0xf778 | No error (0) | 69.164.46.0 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:29.072189093 CET | 1.1.1.1 | 192.168.2.6 | 0xf778 | No error (0) | 69.164.46.128 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:29.633785009 CET | 1.1.1.1 | 192.168.2.6 | 0xf443 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:29.633785009 CET | 1.1.1.1 | 192.168.2.6 | 0xf443 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:43.178046942 CET | 1.1.1.1 | 192.168.2.6 | 0xa9e1 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:36:43.178046942 CET | 1.1.1.1 | 192.168.2.6 | 0xa9e1 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:37:04.988739014 CET | 1.1.1.1 | 192.168.2.6 | 0x4941 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:37:04.988739014 CET | 1.1.1.1 | 192.168.2.6 | 0x4941 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
| Mar 12, 2024 01:37:24.943609953 CET | 1.1.1.1 | 192.168.2.6 | 0xd20e | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
| Mar 12, 2024 01:37:24.943609953 CET | 1.1.1.1 | 192.168.2.6 | 0xd20e | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false |
|
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 0 | 192.168.2.6 | 49704 | 193.143.1.54 | 443 | 5884 | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:14 UTC | 698 | OUT | |
| 2024-03-12 00:36:15 UTC | 231 | IN | |
| 2024-03-12 00:36:15 UTC | 7525 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 1 | 192.168.2.6 | 49705 | 193.143.1.54 | 443 | 5884 | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:15 UTC | 641 | OUT | |
| 2024-03-12 00:36:16 UTC | 255 | IN | |
| 2024-03-12 00:36:16 UTC | 1603 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 2 | 192.168.2.6 | 49708 | 193.143.1.54 | 443 | 5884 | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:16 UTC | 588 | OUT | |
| 2024-03-12 00:36:16 UTC | 257 | IN | |
| 2024-03-12 00:36:16 UTC | 3252 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 3 | 192.168.2.6 | 49710 | 151.101.66.137 | 443 | 5884 | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:16 UTC | 547 | OUT | |
| 2024-03-12 00:36:16 UTC | 564 | IN | |
| 2024-03-12 00:36:16 UTC | 16384 | IN | |
| 2024-03-12 00:36:16 UTC | 16384 | IN | |
| 2024-03-12 00:36:16 UTC | 16384 | IN | |
| 2024-03-12 00:36:16 UTC | 16384 | IN | |
| 2024-03-12 00:36:16 UTC | 16384 | IN | |
| 2024-03-12 00:36:16 UTC | 7875 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 4 | 192.168.2.6 | 49712 | 193.143.1.54 | 443 | 5884 | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:17 UTC | 365 | OUT | |
| 2024-03-12 00:36:17 UTC | 255 | IN | |
| 2024-03-12 00:36:17 UTC | 1603 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 5 | 192.168.2.6 | 49714 | 193.143.1.54 | 443 | 5884 | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:17 UTC | 640 | OUT | |
| 2024-03-12 00:36:17 UTC | 238 | IN | |
| 2024-03-12 00:36:17 UTC | 808 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 6 | 192.168.2.6 | 49716 | 104.91.61.188 | 443 |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:17 UTC | 161 | OUT | |
| 2024-03-12 00:36:18 UTC | 467 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 7 | 192.168.2.6 | 49717 | 104.91.61.188 | 443 |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| 2024-03-12 00:36:19 UTC | 239 | OUT | |
| 2024-03-12 00:36:20 UTC | 531 | IN | |
| 2024-03-12 00:36:20 UTC | 55 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
| Target ID: | 0 |
| Start time: | 01:36:08 |
| Start date: | 12/03/2024 |
| Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Wow64 process (32bit): | false |
| Commandline: | |
| Imagebase: | 0x7ff684c40000 |
| File size: | 3'242'272 bytes |
| MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
| Has elevated privileges: | true |
| Has administrator privileges: | true |
| Programmed in: | C, C++ or other language |
| Reputation: | low |
| Has exited: | false |
| Target ID: | 2 |
| Start time: | 01:36:11 |
| Start date: | 12/03/2024 |
| Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Wow64 process (32bit): | false |
| Commandline: | |
| Imagebase: | 0x7ff684c40000 |
| File size: | 3'242'272 bytes |
| MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
| Has elevated privileges: | true |
| Has administrator privileges: | true |
| Programmed in: | C, C++ or other language |
| Reputation: | low |
| Has exited: | false |
| Target ID: | 3 |
| Start time: | 01:36:13 |
| Start date: | 12/03/2024 |
| Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
| Wow64 process (32bit): | false |
| Commandline: | |
| Imagebase: | 0x7ff684c40000 |
| File size: | 3'242'272 bytes |
| MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
| Has elevated privileges: | true |
| Has administrator privileges: | true |
| Programmed in: | C, C++ or other language |
| Reputation: | low |
| Has exited: | true |
⊘No disassembly