Windows Analysis Report
https://iqzvfstfgkhjbcqj.pretest.com.br/fnjsagvklebfioyedsh/nfsavlkwhjvfedklhdf/fadkhvgqeuklhteiupog/sj.kim5@hdel.co.kr

Overview

General Information

Sample URL: https://iqzvfstfgkhjbcqj.pretest.com.br/fnjsagvklebfioyedsh/nfsavlkwhjvfedklhdf/fadkhvgqeuklhteiupog/sj.kim5@hdel.co.kr
Analysis ID: 1544258
Infos:

Detection

Phisher
Score: 48
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Yara detected Phisher
Detected non-DNS traffic on DNS port
URL contains potential PII (phishing indication)

Classification

Phishing
barindex
Yara detected Phisher
Source: Yara match File source: dropped/chromecache_41, type: DROPPED
URL contains potential PII (phishing indication)
Source: https://iqzvfstfgkhjbcqj.pretest.com.br/fnjsagvklebfioyedsh/nfsavlkwhjvfedklhdf/fadkhvgqeuklhteiupog/sj.kim5@hdel.co.kr Sample URL: PII: sj.kim5@hdel.co.kr
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:62765 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:62816 version: TLS 1.2
Detected non-DNS traffic on DNS port
Source: global traffic TCP traffic: 192.168.2.4:62759 -> 1.1.1.1:53
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global traffic HTTP traffic detected: GET /fnjsagvklebfioyedsh/nfsavlkwhjvfedklhdf/fadkhvgqeuklhteiupog/sj.kim5@hdel.co.kr HTTP/1.1Host: iqzvfstfgkhjbcqj.pretest.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /impressions.html/?tech=c2oua2ltNUBoZGVsLmNvLmty HTTP/1.1Host: online.telecommunication.bestConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://iqzvfstfgkhjbcqj.pretest.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic HTTP traffic detected: GET /impressions.html/?tech=c2oua2ltNUBoZGVsLmNvLmty HTTP/1.1Host: online.telecommunication.bestConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://iqzvfstfgkhjbcqj.pretest.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=rlf40kbsg4e3opfoe4d985khsa
Source: global traffic HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /impressions.html/?tech=c2oua2ltNUBoZGVsLmNvLmty HTTP/1.1Host: online.telecommunication.bestConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://iqzvfstfgkhjbcqj.pretest.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=rlf40kbsg4e3opfoe4d985khsa
Source: global traffic HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic DNS traffic detected: DNS query: iqzvfstfgkhjbcqj.pretest.com.br
Source: global traffic DNS traffic detected: DNS query: online.telecommunication.best
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: unknown HTTP traffic detected: POST /report/v4?s=w48pkwmxigNng7XHPoWu8BqNzPwCSb%2B%2FDVW%2FjhHolVfEqtbkyd2ggtJfcEP7VL3ewcUs76zaCPGc3h%2FBjLQhaBLnKcS4MJWd7QQtPEIbMdHiGQ3g93XlDejEHQfqnzEork2CtLO6B%2FVxy3c%2BLo3XgA%3D%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 489Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 29 Oct 2024 05:12:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=rlf40kbsg4e3opfoe4d985khsa; path=/cf-cache-status: DYNAMICReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w48pkwmxigNng7XHPoWu8BqNzPwCSb%2B%2FDVW%2FjhHolVfEqtbkyd2ggtJfcEP7VL3ewcUs76zaCPGc3h%2FBjLQhaBLnKcS4MJWd7QQtPEIbMdHiGQ3g93XlDejEHQfqnzEork2CtLO6B%2FVxy3c%2BLo3XgA%3D%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 8da0ac64ad8ce5a9-DFWalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1201&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2857&recv_bytes=1334&delivery_rate=2427493&cwnd=240&unsent_bytes=0&cid=5d14be7694315822&ts=853&x=0"
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 29 Oct 2024 05:13:14 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=rlf40kbsg4e3opfoe4d985khsa; path=/cf-cache-status: DYNAMICReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BDt2z%2FiBYvGyxDgdqLTD%2FmnhZSYLp0c1J7u2BPKmnAqe%2Fk4hcpkpR9owl8p2Oz51s50daDbUnW%2FIyug1guTiDjwHGBTF%2BAvXGaE11uhDuN%2FntgU3U4HCv8XFCYj9CSSveb2izTkCL%2BKlko07aSmaBg%3D%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 8da0acd879fe2829-DFWalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1323&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2857&recv_bytes=1426&delivery_rate=2151560&cwnd=251&unsent_bytes=0&cid=0d4ece45725037b8&ts=284&x=0"
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 29 Oct 2024 05:14:07 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: PHPSESSID=rlf40kbsg4e3opfoe4d985khsa; path=/cf-cache-status: DYNAMICReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Np%2FvuoPoXvNJ9WJDkAGvyQIQ2tfQYIFPhCge%2FcswuBkCzHcMQVLk3hLG5uCkq5D0rZvhhjT1DF%2F0yUra5DW3AU9%2BsBbHSLmkQ3GYHUVpouSRmQ%2FyBJGHaMsAlO4qIC1qYzMtrzuBp7tXdaYeJNrwpw%3D%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 8da0ae239f884662-DFWalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1811&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2858&recv_bytes=1426&delivery_rate=1568797&cwnd=251&unsent_bytes=0&cid=e31f0556077726c3&ts=278&x=0"
Source: chromecache_41.2.dr String found in binary or memory: https://online.telecommunication.best/impressions.html/?tech=c2oua2ltNUBoZGVsLmNvLmty
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown Network traffic detected: HTTP traffic on port 62865 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown Network traffic detected: HTTP traffic on port 62888 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 62842 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown Network traffic detected: HTTP traffic on port 62785 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62779 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62813 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62922 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62791 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62832
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62833
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62834
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62835
Source: unknown Network traffic detected: HTTP traffic on port 62807 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62836
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62837
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62838
Source: unknown Network traffic detected: HTTP traffic on port 62916 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62839
Source: unknown Network traffic detected: HTTP traffic on port 62859 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown Network traffic detected: HTTP traffic on port 62836 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62830
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62831
Source: unknown Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62847 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62860 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62904 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62843
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62844
Source: unknown Network traffic detected: HTTP traffic on port 62854 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62845
Source: unknown Network traffic detected: HTTP traffic on port 62911 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62846
Source: unknown Network traffic detected: HTTP traffic on port 62797 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62847
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62848
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62849
Source: unknown Network traffic detected: HTTP traffic on port 62802 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62871 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62840
Source: unknown Network traffic detected: HTTP traffic on port 62762 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62841
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62842
Source: unknown Network traffic detected: HTTP traffic on port 62773 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62854
Source: unknown Network traffic detected: HTTP traffic on port 62830 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62855
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62856
Source: unknown Network traffic detected: HTTP traffic on port 62767 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62857
Source: unknown Network traffic detected: HTTP traffic on port 62899 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62858
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62859
Source: unknown Network traffic detected: HTTP traffic on port 62801 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62909 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62872 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62786 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62850
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62851
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62852
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62853
Source: unknown Network traffic detected: HTTP traffic on port 62841 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62784 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62818 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62778 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62824 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62866 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62883 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62865
Source: unknown Network traffic detected: HTTP traffic on port 62877 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62829 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62866
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62867
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62868
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62869
Source: unknown Network traffic detected: HTTP traffic on port 62917 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62835 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62860
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62861
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62862
Source: unknown Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62863
Source: unknown Network traffic detected: HTTP traffic on port 62894 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62864
Source: unknown Network traffic detected: HTTP traffic on port 62890 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62781 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62817 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62823 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62884 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62917
Source: unknown Network traffic detected: HTTP traffic on port 62846 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62918
Source: unknown Network traffic detected: HTTP traffic on port 62861 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62919
Source: unknown Network traffic detected: HTTP traffic on port 62775 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62769 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62878 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62910
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62911
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62912
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62913
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62914
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62915
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62916
Source: unknown Network traffic detected: HTTP traffic on port 62855 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62889 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62900 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62921 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62812 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62807
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62808
Source: unknown Network traffic detected: HTTP traffic on port 62790 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62809
Source: unknown Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62920
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62800
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62921
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62801
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62922
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62802
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62803
Source: unknown Network traffic detected: HTTP traffic on port 62915 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62804
Source: unknown Network traffic detected: HTTP traffic on port 62806 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62805
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62806
Source: unknown Network traffic detected: HTTP traffic on port 62896 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62850 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62840 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62818
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62819
Source: unknown Network traffic detected: HTTP traffic on port 62905 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62867 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62810
Source: unknown Network traffic detected: HTTP traffic on port 62828 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62805 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62811
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62812
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62813
Source: unknown Network traffic detected: HTTP traffic on port 62910 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62814
Source: unknown Network traffic detected: HTTP traffic on port 62796 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62815
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62816
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62817
Source: unknown Network traffic detected: HTTP traffic on port 62811 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62763 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62895 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62834 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62780 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62829
Source: unknown Network traffic detected: HTTP traffic on port 62774 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62845 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62862 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62821
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62822
Source: unknown Network traffic detected: HTTP traffic on port 62768 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62823
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62824
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62825
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62826
Source: unknown Network traffic detected: HTTP traffic on port 62800 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62827
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62828
Source: unknown Network traffic detected: HTTP traffic on port 62856 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown Network traffic detected: HTTP traffic on port 62839 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62873 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62820
Source: unknown Network traffic detected: HTTP traffic on port 62880 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62799
Source: unknown Network traffic detected: HTTP traffic on port 62794 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62771 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62851 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62907 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62788 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62791
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62793
Source: unknown Network traffic detected: HTTP traffic on port 62765 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62897 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62794
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62795
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62796
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62797
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62798
Source: unknown Network traffic detected: HTTP traffic on port 62874 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62782 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62816 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62919 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62776 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62822 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62868 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62885 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62827 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62833 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62879 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62892 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62815 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62901 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62821 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62920 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62809 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62844 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62863 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62886 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62914 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62838 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62857 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62891 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62906
Source: unknown Network traffic detected: HTTP traffic on port 62906 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62907
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62908
Source: unknown Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62909
Source: unknown Network traffic detected: HTTP traffic on port 62849 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62770 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62804 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62795 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62852 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62900
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62901
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62902
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62903
Source: unknown Network traffic detected: HTTP traffic on port 62789 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62904
Source: unknown Network traffic detected: HTTP traffic on port 62810 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62905
Source: unknown Network traffic detected: HTTP traffic on port 62764 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62903 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62869 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62876
Source: unknown Network traffic detected: HTTP traffic on port 62912 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62877
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62878
Source: unknown Network traffic detected: HTTP traffic on port 62826 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62879
Source: unknown Network traffic detected: HTTP traffic on port 62832 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62798 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62803 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62870 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62870
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62871
Source: unknown Network traffic detected: HTTP traffic on port 62761 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62872
Source: unknown Network traffic detected: HTTP traffic on port 62893 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62873
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62874
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62875
Source: unknown Network traffic detected: HTTP traffic on port 62843 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62881 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62772 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62864 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62887
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62767
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62888
Source: unknown Network traffic detected: HTTP traffic on port 62793 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62768
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62889
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62769
Source: unknown Network traffic detected: HTTP traffic on port 62908 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62787 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62880
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62881
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62761
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62882
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62762
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62883
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62763
Source: unknown Network traffic detected: HTTP traffic on port 62837 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62884
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62764
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62885
Source: unknown Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62765
Source: unknown Network traffic detected: HTTP traffic on port 62858 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62875 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62886
Source: unknown Network traffic detected: HTTP traffic on port 62783 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62918 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62777 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62825 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62848 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62882 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62777
Source: unknown Network traffic detected: HTTP traffic on port 62853 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62898
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62778
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62899
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62779
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62890
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62770
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62891
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62771
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62892
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62772
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62893
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62773
Source: unknown Network traffic detected: HTTP traffic on port 62819 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62894
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62774
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62895
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62775
Source: unknown Network traffic detected: HTTP traffic on port 62876 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62896
Source: unknown Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62776
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62897
Source: unknown Network traffic detected: HTTP traffic on port 62902 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62820 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62814 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62790
Source: unknown Network traffic detected: HTTP traffic on port 62808 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62887 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62788
Source: unknown Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62789
Source: unknown Network traffic detected: HTTP traffic on port 62913 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62831 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 62799 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62780
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62781
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62782
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62783
Source: unknown Network traffic detected: HTTP traffic on port 62898 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62784
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62785
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62786
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62787
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:62765 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:62816 version: TLS 1.2
Source: classification engine Classification label: mal48.phis.win@20/2@8/6
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1932,i,1268793181333793414,13281594498367312046,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://iqzvfstfgkhjbcqj.pretest.com.br/fnjsagvklebfioyedsh/nfsavlkwhjvfedklhdf/fadkhvgqeuklhteiupog/sj.kim5@hdel.co.kr"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1932,i,1268793181333793414,13281594498367312046,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Window Recorder Window detected: More than 3 window changes detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1544258 URL: https://iqzvfstfgkhjbcqj.pr... Startdate: 29/10/2024 Architecture: WINDOWS Score: 48 24 Yara detected Phisher 2->24 6 chrome.exe 1 2->6         started        9 chrome.exe 2->9         started        process3 dnsIp4 14 192.168.2.4, 138, 443, 49663 unknown unknown 6->14 16 239.255.255.250 unknown Reserved 6->16 11 chrome.exe 6->11         started        process5 dnsIp6 18 iqzvfstfgkhjbcqj.pretest.com.br 192.185.214.229, 443, 49737, 49738 UNIFIEDLAYER-AS-1US United States 11->18 20 www.google.com 142.250.186.68, 443, 49744, 62818 GOOGLEUS United States 11->20 22 2 other IPs or domains 11->22
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
142.250.186.68
 www.google.com United States
15169 GOOGLEUS false
239.255.255.250
 unknown Reserved
unknown unknown false
35.190.80.1
 a.nel.cloudflare.com United States
15169 GOOGLEUS false
192.185.214.229
 iqzvfstfgkhjbcqj.pretest.com.br United States
46606 UNIFIEDLAYER-AS-1US false
172.67.161.254
 online.telecommunication.best United States
13335 CLOUDFLARENETUS false

Private

IP
192.168.2.4

Contacted Domains

Name IP Active
a.nel.cloudflare.com 35.190.80.1 true
online.telecommunication.best 172.67.161.254 true
iqzvfstfgkhjbcqj.pretest.com.br 192.185.214.229 true
s-part-0017.t-0009.t-msedge.net 13.107.246.45 true
www.google.com 142.250.186.68 true
fp2e7a.wpc.phicdn.net 192.229.221.95 true
s-part-0032.t-0009.t-msedge.net 13.107.246.60 true

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://iqzvfstfgkhjbcqj.pretest.com.br/fnjsagvklebfioyedsh/nfsavlkwhjvfedklhdf/fadkhvgqeuklhteiupog/sj.kim5@hdel.co.kr false
    		unknown
    https://a.nel.cloudflare.com/report/v4?s=w48pkwmxigNng7XHPoWu8BqNzPwCSb%2B%2FDVW%2FjhHolVfEqtbkyd2ggtJfcEP7VL3ewcUs76zaCPGc3h%2FBjLQhaBLnKcS4MJWd7QQtPEIbMdHiGQ3g93XlDejEHQfqnzEork2CtLO6B%2FVxy3c%2BLo3XgA%3D%3D false
      		unknown
      https://online.telecommunication.best/impressions.html/?tech=c2oua2ltNUBoZGVsLmNvLmty false
        		unknown
        https://a.nel.cloudflare.com/report/v4?s=%2BDt2z%2FiBYvGyxDgdqLTD%2FmnhZSYLp0c1J7u2BPKmnAqe%2Fk4hcpkpR9owl8p2Oz51s50daDbUnW%2FIyug1guTiDjwHGBTF%2BAvXGaE11uhDuN%2FntgU3U4HCv8XFCYj9CSSveb2izTkCL%2BKlko07aSmaBg%3D%3D false
          		unknown