Windows Analysis Report
https://url6.mailanyone.net/scanner?m=1s9UFM-000CiC-67&d=4%7Cmail%2F90%2F1716316200%2F1s9UFM-000CiC-67%7Cin6e%7C57e1b682%7C26023477%7C10839452%7C664CE828D09A29E749862A491AAAC3E1&o=%2Fphta%3A%2Fptspbinrllytaonozz%5B.%5Dc%5B.%5Doeigc%2Fa&s=IY823YGYdPj0VexD71Fh81X9-uM

Overview

General Information

Sample URL:	https://url6.mailanyone.net/scanner?m=1s9UFM-000CiC-67&d=4%7Cmail%2F90%2F1716316200%2F1s9UFM-000CiC-67%7Cin6e%7C57e1b682%7C26023477%7C10839452%7C664CE828D09A29E749862A491AAAC3E1&o=%2Fphta%3A%2Fptspbin
Analysis ID:	1445861

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Detected non-DNS traffic on DNS port

Stores files to the Windows start menu directory

Classification

Signatures

Source: unknown	HTTPS traffic detected: 20.190.160.17:443 -> 192.168.2.18:49699 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.185:443 -> 192.168.2.18:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.18:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.18:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.18:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.18:59350 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:61486 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:61486 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:61486 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53
Source: global traffic	TCP traffic: 192.168.2.18:61486 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.18:59348 -> 162.159.36.2:53

Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.160.17
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.209.185
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160

Source: global traffic	DNS traffic detected: DNS query: url6.mailanyone.net
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723

Source: unknown	HTTPS traffic detected: 20.190.160.17:443 -> 192.168.2.18:49699 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.185:443 -> 192.168.2.18:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.18:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.18:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.18:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.18:59350 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@19/17@6/89

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://url6.mailanyone.net/scanner?m=1s9UFM-000CiC-67&d=4%7Cmail%2F90%2F1716316200%2F1s9UFM-000CiC-67%7Cin6e%7C57e1b682%7C26023477%7C10839452%7C664CE828D09A29E749862A491AAAC3E1&o=%2Fphta%3A%2Fptspbinrllytaonozz%5B.%5Dc%5B.%5Doeigc%2Fa&s=IY823YGYdPj0VexD71Fh81X9-uM
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 --field-trial-handle=1948,i,11153535790596748223,12639019733609917969,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 --field-trial-handle=1948,i,11153535790596748223,12639019733609917969,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Screenshots

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.186.46	unknown	United States	15169	GOOGLEUS	false
142.250.186.67	unknown	United States	15169	GOOGLEUS	false
1.1.1.1	unknown	Australia	13335	CLOUDFLARENETUS	false
34.104.35.123	unknown	United States	15169	GOOGLEUS	false
104.18.10.14	unknown	United States	13335	CLOUDFLARENETUS	false
108.177.15.84	unknown	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
216.58.212.142	unknown	United States	15169	GOOGLEUS	false
142.250.186.163	unknown	United States	15169	GOOGLEUS	false
172.217.16.132	www.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.18

Contacted Domains

Name	IP	Active
www.google.com	172.217.16.132	true
url6.mailanyone.net	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://url6.mailanyone.net/scanner	false		unknown

ID:	1445861
Product:	CloudBasic
Start time:	17:23:27
Start date:	22.05.2024
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed May 22 14:24:24 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	48A5B0F0F7C46F7A4D40ED5C3C562840	E57AC7B9542324F262B394D6574B0431B2D7CD7B	DC7DFBE095FDB771B715C416427DC15331B2221F9CF87C03387957927BDF660F
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed May 22 14:24:24 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	6E722C8D69F0C570B147BC5B2976752B	6136CC2A39C3C1C6F3581126A4BCC24B2362014C	9E49D629D8EDEC53CC92CF9B0BD4067238CFBB7ABB257474558DF7115D4A62E9
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 09:23:19 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	89BC758C75BA9415D1BCA25224CEDCA6	DC11AB9795583AD221D6DF6AFE6E57F06426546B	58DAC0F528EF4B485C195C3BB69B0F31FED40B1311AE1D3B4BF482BE9442F105
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed May 22 14:24:24 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	70F9CBB827C16B9C890E7F2537FC89AF	7A4C2CB834261233A22B6665E82334186F04D981	B6802C1E04646F57FEFE36DCE115FEB98F5311A82B3304242859B10DB8560011
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed May 22 14:24:24 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	D2D3C6762C9375D8AE45CAAD9AA50EF0	F025360373CEA49AD6EF7C58656CCC2F1C74FC8A	830535CEBC5FBF1314559088FC1FC269AF0E23CA3027F98B0412DAB07F34BC93
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed May 22 14:24:24 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	6B843173D60E21233A72224008A2739B	DA005258724BB8A51E50855127052F925BF4AA39	1DE3D384EA07F490E2A727AF5AAB802FE9A0229FC1709C0D29D838FF2D30E78C
Chrome Cache Entry: 151	ASCII text, with very long lines (4962)	49864A8E125D378BCB2C452E5F949AB9	16813CF45B19A19293AE85ECC3D7E6E18F95E75C	0ED4CE10806A4CFFBC0A283BEF8AD076EDF2D070A3F72979F825595790966EEE
Chrome Cache Entry: 152	PNG image data, 1722 x 319, 8-bit/color RGBA, non-interlaced	00DA7A0E86DC2B4118D03B7FC6B3306B	2A8C5BDB06DC8A6903FB70EECF00C323D4CAFB06	08810F9F61655B1BE5D696B886A04E6650EB2F529FE003C4F2A677917D8ECB96
Chrome Cache Entry: 154	ASCII text, with very long lines (33677)	0A3A58F308CD683A742C13B16D3BC35B	1C175D968B6892D6B431B5F40309C844E654D580	B0DDAAD28F9246458C037B59F4BA5620A8432C6BE41B10B235E36B42B665ECFA
Chrome Cache Entry: 155	ASCII text, with very long lines (65536), with no line terminators	A5AF6842BF26FC8A4BCB71E4FA55C0CA	6D297D38D8291F5BFC5582C6032597449ECC9250	22F86A3F92002829B79768B323C877434B256A0B49C10CF370EA22B3B9336B36
Chrome Cache Entry: 156	MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	9D62DCC244C0F3D88367A943BA4D4FED	5FC5EC953D4344422EB686B9FC61EA31CAED360E	FDDF75D3376BB911DB3189AA149F508317799B10611438B23D688B89DB208DA7
Chrome Cache Entry: 157	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1440x1018, components 3	41DD29DDD14473A2B95F910C8D817473	C241CD5A158E257F6ADBC927B349886497561EDD	126308450DE5137A72687784E6B562811E404A3CF7EF62CF5E7A5986555A5E38
Chrome Cache Entry: 158	Unicode text, UTF-8 text, with very long lines (65533), with no line terminators	5ED8A5EC7C2F3373DAB40F406BE4E1E6	B28BAF01ED6D1017AACF302343E6C0C675D8127D	E3526F688F0037EB9818B78E5096B7ED43AEC8D0A9A1CBEA6C7FEA39D812291D
Chrome Cache Entry: 159	ASCII text, with very long lines (6557)	8C2305C32BD61A9B135A4DCF8586132C	9A62FA2529608706730408FEDC64B61C9678F73C	077674C2AD26D48610CA9886B0DD80373495ED8949965C3CB0D6B6F266162C0E
Chrome Cache Entry: 161	ASCII text, with very long lines (65462)	FED72784CBCB19D9375B283B432D7B3B	3012BE15099BEE5AFC416D150C4616A0A418A8D0	A9DBEF011641348EC3C7A812DD3EB4871E6C971A66870630D8641C56DE39AF69
Chrome Cache Entry: 163	HTML document, ASCII text, with very long lines (3999), with no line terminators	CAB6057F3FB0BD14FDB154C9636F2ACD	DEE42B01B6C0C8C4244309249BED3DAC8A875CAF	48CC5FBCA021072CF7BE4F476DDF522623AA9ABF483623E1722A92F074644324
Chrome Cache Entry: 164	ASCII text, with very long lines (8127)	131871CE596EE77AA51129C134336F00	9BE571424EA29C4EA834981098C3924B6C19453A	92C546D42EA275C73117FA125AF64A342BAC8E0E921EC11280861D905719BEB8

Windows Analysis Report
https://url6.mailanyone.net/scanner?m=1s9UFM-000CiC-67&d=4%7Cmail%2F90%2F1716316200%2F1s9UFM-000CiC-67%7Cin6e%7C57e1b682%7C26023477%7C10839452%7C664CE828D09A29E749862A491AAAC3E1&o=%2Fphta%3A%2Fptspbinrllytaonozz%5B.%5Dc%5B.%5Doeigc%2Fa&s=IY823YGYdPj0VexD71Fh81X9-uM

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Boot Survival

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://url6.mailanyone.net/scanner?m=1s9UFM-000CiC-67&d=4%7Cmail%2F90%2F1716316200%2F1s9UFM-000CiC-67%7Cin6e%7C57e1b682%7C26023477%7C10839452%7C664CE828D09A29E749862A491AAAC3E1&o=%2Fphta%3A%2Fptspbinrllytaonozz%5B.%5Dc%5B.%5Doeigc%2Fa&s=IY823YGYdPj0VexD71Fh81X9-uM

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Boot Survival

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://url6.mailanyone.net/scanner?m=1s9UFM-000CiC-67&d=4%7Cmail%2F90%2F1716316200%2F1s9UFM-000CiC-67%7Cin6e%7C57e1b682%7C26023477%7C10839452%7C664CE828D09A29E749862A491AAAC3E1&o=%2Fphta%3A%2Fptspbinrllytaonozz%5B.%5Dc%5B.%5Doeigc%2Fa&s=IY823YGYdPj0VexD71Fh81X9-uM