Windows Analysis Report
Argogroupus_Remitt#04544-10_31_2024.html

Overview

General Information

Sample name: Argogroupus_Remitt#04544-10_31_2024.html
Analysis ID: 1546864
MD5: 7863d780e70af732c52666f016ca943a
SHA1: a1f8b38627116c60806ce087bc09993a5b05bca0
SHA256: cfdb86f4c0bf489181a38e2116335a03342299de52adbbbf8e8686870eda5a60
Infos:

Detection

Score: 48
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

HTML document with suspicious name
HTML document with suspicious title
Detected non-DNS traffic on DNS port
HTML page contains hidden javascript code
IP address seen in connection with other malware
JA3 SSL client fingerprint seen in connection with other malware
Stores files to the Windows start menu directory
Suricata IDS alerts with low severity for network traffic

Classification

Phishing
barindex
HTML document with suspicious title
Source: file:///C:/Users/user/Desktop/Argogroupus_Remitt%2304544-10_31_2024.html Tab title: Argogroupus_Remitt%2304544-10_31_2024.html
HTML page contains hidden javascript code
Source: Argogroupus_Remitt#04544-10_31_2024.html HTTP Parser: Base64 decoded: <section id-Nonenone12212="" misa="brian.lovell@argogroup
Source: unknown HTTPS traffic detected: 23.32.128.106:443 -> 192.168.2.5:65180 version: TLS 1.2
Source: unknown HTTPS traffic detected: 23.32.128.106:443 -> 192.168.2.5:65181 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.5:65184 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.5:65189 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.5:65378 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.5:65384 version: TLS 1.2
Detected non-DNS traffic on DNS port
Source: global traffic TCP traffic: 192.168.2.5:65179 -> 1.1.1.1:53
IP address seen in connection with other malware
Source: Joe Sandbox View IP Address: 239.255.255.250 239.255.255.250
JA3 SSL client fingerprint seen in connection with other malware
Source: Joe Sandbox View JA3 fingerprint: 28a2c9bd18a11de089ef85a160da29e4
Suricata IDS alerts with low severity for network traffic
Source: Network traffic Suricata IDS: 2022930 - Severity 1 - ET EXPLOIT Possible CVE-2016-2211 Symantec Cab Parsing Buffer Overflow : 20.109.210.53:443 -> 192.168.2.5:65184
Source: Network traffic Suricata IDS: 2022930 - Severity 1 - ET EXPLOIT Possible CVE-2016-2211 Symantec Cab Parsing Buffer Overflow : 20.109.210.53:443 -> 192.168.2.5:65378
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 23.32.128.106
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: global traffic HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=wZ8zxoFLHT9SKYK&MD=sD5V4Nf8 HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=wZ8zxoFLHT9SKYK&MD=sD5V4Nf8 HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703301v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703300v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120128v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120603v8s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120607v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230104v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230157v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230158v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230162v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230164v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230166v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230167v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230168v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230169v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230165v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230170v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230171v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230172v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230173v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule230174v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120119v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704101v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704100v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704201v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704200v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704151v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule704150v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule226009v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: unknown Network traffic detected: HTTP traffic on port 65449 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65426 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65266 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65243 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65461 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65381 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65278 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65335 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65198 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65370 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65300 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65289 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65438 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65403 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65346 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65254 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65311 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65392 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65219 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65267 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65324 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65437 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65404 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65347 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown Network traffic detected: HTTP traffic on port 65358 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65415 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65460 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65242 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65369 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65290 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown Network traffic detected: HTTP traffic on port 65256 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65194
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65195
Source: unknown Network traffic detected: HTTP traffic on port 65233 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65192
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65193
Source: unknown Network traffic detected: HTTP traffic on port 65336 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65210 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65199 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65198
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65199
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65196
Source: unknown Network traffic detected: HTTP traffic on port 65394 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65371 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65359 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65299 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65310 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65189
Source: unknown Network traffic detected: HTTP traffic on port 65276 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65402 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65360 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65448 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65265 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65413 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65244 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65459 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65325 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65447 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65414 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65184 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65309 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65255 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65337 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65232 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65425 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65393 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65288 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65221 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65436 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65382 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65277 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65348 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65390 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65355 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65378 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65303 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65217 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65429 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65406 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65205 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65343 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65314 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65286 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65452 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65417 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65240 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65332 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65441 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65275 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65367 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65206 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65418 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65321 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65287 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65264 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65463 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65251 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65440 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65366 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65389 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65333 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65228 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65302 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65298 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65344 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65239 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65451 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65313 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65262 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65416 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65285 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65322 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65439 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65345 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65368 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65253 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65230 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65356 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65391 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65462 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65428 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65296 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65380 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65357 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65334 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65241 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65229 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65301 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65274 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65297 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65207 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65312 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65450 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65192 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65263 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65379 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65218 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65323 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65405 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65181 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65252 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65317 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65430
Source: unknown Network traffic detected: HTTP traffic on port 65398 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65309
Source: unknown Network traffic detected: HTTP traffic on port 65352 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65375 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65307
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65428
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65308
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65429
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65301
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65422
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65302
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65423
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65420
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65300
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65421
Source: unknown Network traffic detected: HTTP traffic on port 65295 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65305
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65426
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65306
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65303
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65424
Source: unknown Network traffic detected: HTTP traffic on port 65272 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65304
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65425
Source: unknown Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65364 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65440
Source: unknown Network traffic detected: HTTP traffic on port 65444 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65320
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65441
Source: unknown Network traffic detected: HTTP traffic on port 65226 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65261 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65318
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65439
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65319
Source: unknown Network traffic detected: HTTP traffic on port 65329 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65455 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65237 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65312
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65433
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65313
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65434
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65310
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65431
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65311
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65432
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65316
Source: unknown Network traffic detected: HTTP traffic on port 65420 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65437
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65317
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65438
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65314
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65435
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65315
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65436
Source: unknown Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65363 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65330
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65451
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65210
Source: unknown Network traffic detected: HTTP traffic on port 65193 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65331
Source: unknown Network traffic detected: HTTP traffic on port 65443 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65452
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65450
Source: unknown Network traffic detected: HTTP traffic on port 65225 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65248 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65410 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65329
Source: unknown Network traffic detected: HTTP traffic on port 65305 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65202
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65323
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65444
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65203
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65324
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65445
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65200
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65321
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65442
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65322
Source: unknown Network traffic detected: HTTP traffic on port 65180 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65201
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65206
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65327
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65448
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65207
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65328
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65449
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65204
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65325
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65446
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65205
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65326
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65447
Source: unknown Network traffic detected: HTTP traffic on port 65421 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65341
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65462
Source: unknown Network traffic detected: HTTP traffic on port 65203 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65221
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65342
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65463
Source: unknown Network traffic detected: HTTP traffic on port 65316 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65341 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65460
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65340
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65461
Source: unknown Network traffic detected: HTTP traffic on port 65397 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65284 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65409 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65219
Source: unknown Network traffic detected: HTTP traffic on port 65330 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65432 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65334
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65213
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65455
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65214
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65335
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65456
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65211
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65332
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65453
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65212
Source: unknown Network traffic detected: HTTP traffic on port 65214 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65333
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65454
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65217
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65338
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65459
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65218
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65339
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65215
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65336
Source: unknown Network traffic detected: HTTP traffic on port 65386 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65457
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65216
Source: unknown Network traffic detected: HTTP traffic on port 65273 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65337
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65458
Source: unknown Network traffic detected: HTTP traffic on port 65365 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65204 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65342 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65227 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65454 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65442 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65259 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65194 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65431 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65282 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65377 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65353 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65407 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65304 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65250 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65216 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65271 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65388 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65315 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65453 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65430 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65283 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65260 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65408
Source: unknown Network traffic detected: HTTP traffic on port 65399 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65409
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65406
Source: unknown Network traffic detected: HTTP traffic on port 65408 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65407
Source: unknown Network traffic detected: HTTP traffic on port 65354 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65331 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65400
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65401
Source: unknown Network traffic detected: HTTP traffic on port 65215 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65404
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65405
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65402
Source: unknown Network traffic detected: HTTP traffic on port 65238 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65387 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65403
Source: unknown Network traffic detected: HTTP traffic on port 65419 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65249 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65320 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65419
Source: unknown Network traffic detected: HTTP traffic on port 65376 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65294 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65417
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65418
Source: unknown Network traffic detected: HTTP traffic on port 65189 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65411
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65412
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65410
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65415
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65416
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65413
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65414
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65271
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65392
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65272
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65393
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65390
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65270
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65391
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65275
Source: unknown Network traffic detected: HTTP traffic on port 65361 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65396
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65276
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65397
Source: unknown Network traffic detected: HTTP traffic on port 65195 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65273
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65394
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65274
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65395
Source: unknown Network traffic detected: HTTP traffic on port 65223 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65246 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65281 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65326 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65435 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65458 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65269 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65349 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65412 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65268
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65389
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65269
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65266
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65387
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65267
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65388
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65282
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65283
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65280
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65281
Source: unknown Network traffic detected: HTTP traffic on port 65423 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65286
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65287
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65284
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65285
Source: unknown Network traffic detected: HTTP traffic on port 65395 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65292 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65279
Source: unknown Network traffic detected: HTTP traffic on port 65308 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65212 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65277
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65398
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65278
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65399
Source: unknown Network traffic detected: HTTP traffic on port 65258 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65384 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65293
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65294
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65291
Source: unknown Network traffic detected: HTTP traffic on port 65424 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65292
Source: unknown Network traffic detected: HTTP traffic on port 65338 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65297
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65298
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65295
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65296
Source: unknown Network traffic detected: HTTP traffic on port 65319 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65290
Source: unknown Network traffic detected: HTTP traffic on port 65293 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65222 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65350 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65288
Source: unknown Network traffic detected: HTTP traffic on port 65383 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65289
Source: unknown Network traffic detected: HTTP traffic on port 65234 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65270 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65184
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65181
Source: unknown Network traffic detected: HTTP traffic on port 65211 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65196 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65446 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65372 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65180
Source: unknown Network traffic detected: HTTP traffic on port 65245 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65327 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65457 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65200 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65299
Source: unknown Network traffic detected: HTTP traffic on port 65401 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65279 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65422 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65352
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65232
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65353
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65350
Source: unknown Network traffic detected: HTTP traffic on port 65445 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65230
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65351
Source: unknown Network traffic detected: HTTP traffic on port 65307 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65224
Source: unknown Network traffic detected: HTTP traffic on port 65213 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65345
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65346
Source: unknown Network traffic detected: HTTP traffic on port 65236 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65225
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65222
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65343
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65223
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65344
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65228
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65349
Source: unknown Network traffic detected: HTTP traffic on port 65385 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65229
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65226
Source: unknown Network traffic detected: HTTP traffic on port 65291 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65347
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65227
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65348
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65360
Source: unknown Network traffic detected: HTTP traffic on port 65339 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65242
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65363
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65243
Source: unknown Network traffic detected: HTTP traffic on port 65318 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65364
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65240
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65361
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65241
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65362
Source: unknown Network traffic detected: HTTP traffic on port 65201 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65247 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65268 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65434 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65374 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65235
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65356
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65236
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65357
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65233
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65354
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65355
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65234
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65239
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65237
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65358
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65238
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65359
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65370
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65250
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65371
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65253
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65374
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65254
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65375
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65251
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65372
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65252
Source: unknown Network traffic detected: HTTP traffic on port 65340 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65373
Source: unknown Network traffic detected: HTTP traffic on port 65202 -> 443
Source: unknown HTTPS traffic detected: 23.32.128.106:443 -> 192.168.2.5:65180 version: TLS 1.2
Source: unknown HTTPS traffic detected: 23.32.128.106:443 -> 192.168.2.5:65181 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.5:65184 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.5:65189 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.5:65378 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.5:65384 version: TLS 1.2

System Summary
barindex
HTML document with suspicious name
Source: Name includes: Argogroupus_Remitt#04544-10_31_2024.html Initial sample: remit
Source: classification engine Classification label: mal48.phis.winHTML@26/6@2/8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps Jump to behavior
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "C:\Users\user\Desktop\Argogroupus_Remitt#04544-10_31_2024.html"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2056 --field-trial-handle=1848,i,11750734714780094304,10785937426118284261,262144 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2056 --field-trial-handle=1848,i,11750734714780094304,10785937426118284261,262144 /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Google Drive.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Stores files to the Windows start menu directory
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk Jump to behavior
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1546864 Sample: Argogroupus_Remitt#04544-10... Startdate: 01/11/2024 Architecture: WINDOWS Score: 48 20 HTML document with suspicious name 2->20 22 HTML document with suspicious title 2->22 6 chrome.exe 9 2->6         started        process3 dnsIp4 12 192.168.2.13 unknown unknown 6->12 14 192.168.2.14 unknown unknown 6->14 16 5 other IPs or domains 6->16 9 chrome.exe 6->9         started        process5 dnsIp6 18 www.google.com 142.250.186.164, 443, 49712, 65451 GOOGLEUS United States 9->18
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
239.255.255.250
 unknown Reserved
unknown unknown false
142.250.186.164
 www.google.com United States
15169 GOOGLEUS false

Private

IP
192.168.2.7
192.168.2.5
192.168.2.13
192.168.2.23
192.168.2.15
192.168.2.14

Contacted Domains

Name IP Active
www.google.com 142.250.186.164 true

Contacted URLs

Name Malicious Antivirus Detection Reputation
file:///C:/Users/user/Desktop/Argogroupus_Remitt%2304544-10_31_2024.html true
    		unknown