Windows Analysis Report
https://usercenter.ncodesolutions.com:8080/KYCResume/login

Overview

General Information

Sample URL:	https://usercenter.ncodesolutions.com:8080/KYCResume/login
Analysis ID:	1578292
Infos:

Detection

Score:	0
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Classification

Signatures

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Source: https://usercenter.ncodesolutions.com:8080/KYCResume/resources/js/AesUtil.js

HTTP Parser: var aesutil = function (keysize, iterationcount) { this.keysize = keysize / 32; this.iterationcount = iterationcount;};aesutil.prototype.generatekey = function (salt, passphrase) { var key = cryptojs.pbkdf2( passphrase, cryptojs.enc.hex.parse(salt), {keysize: this.keysize, iterations: this.iterationcount}); return key;}aesutil.prototype.encrypt = function (salt, iv, passphrase, plaintext) { var base64 = {_keystr: "abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyz0123456789+/=", encode: function (e) { var t = ""; var n, r, i, s, o, u, a; var f = 0; e = base64._utf8_encode(e); while (f < e.length) { n = e.charcodeat(f++); r = e.charcodeat(f++); i = e.charcodeat(f++); s = n >> 2; o = (n & 3) << 4 | r >> 4; u = (r & 15) << 2 | i >> 6; a = i & 63; ...

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://usercenter.ncodesolutions.com:8080sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.4.0/js/all.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://usercenter.ncodesolutions.com:8080sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/datepicker/1.0.10/datepicker.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/pdfmake.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/sweetalert2@11.7.3/dist/sweetalert2.min.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/select2@4.1.0-rc.0/dist/css/select2.min.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery.blockUI/2.70/jquery.blockUI.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/vfs_fonts.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap-icons@1.7.2/font/bootstrap-icons.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/sweetalert2@11.7.3/dist/sweetalert2.all.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/css/buttons.bootstrap5.css HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/css/responsive.bootstrap5.css HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/css/searchBuilder.bootstrap5.css HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/jquery.dataTables.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/dataTables.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/dataTables.buttons.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/select2@4.1.0-rc.0/dist/js/select2.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery.blockUI/2.70/jquery.blockUI.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/dataTables.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/datepicker/1.0.10/datepicker.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.html5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/dataTables.responsive.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/responsive.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/js/dataTables.searchBuilder.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/dataTables.buttons.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/sweetalert2@11.7.3/dist/sweetalert2.all.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/js/searchBuilder.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/jquery.dataTables.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/vfs_fonts.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fixedcolumns/4.3.0/js/dataTables.fixedColumns.min.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/select2@4.1.0-rc.0/dist/js/select2.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/responsive.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/dataTables.responsive.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.html5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.4.0/js/all.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/js/searchBuilder.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/pdfmake.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fixedcolumns/4.3.0/js/dataTables.fixedColumns.min.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: usercenter.ncodesolutions.com
Source: global traffic	DNS traffic detected: DNS query: _8080._https.usercenter.ncodesolutions.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: cdn.datatables.net
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com

Source: unknown

HTTP traffic detected: POST /report/v4?s=TW07%2FCD9fZJa4mSCQLgIvUoUlyQLFm5aAIeiAKeCqfF6%2F5G%2FfbsgRZ0knqe0GHavGfHO9ypfPIcWDvKA62Y%2FU3SW1PTFRw%2FZX7HAQfPg7sfpN175zudh0%2Bc6Ch1w3uVWfkXgJA%3D%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 535Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://api.jquery.com/jQuery.ajax/)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://blog.hackers-cafe.net/2009/06/how-to-calculate-bezier-curves-bounding.html
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://datatables.net/license
Source: chromecache_130.2.dr, chromecache_106.2.dr	String found in binary or memory: http://datatables.net/license/mit
Source: chromecache_140.2.dr, chromecache_112.2.dr	String found in binary or memory: http://datatables.net/manual/styling/bootstrap
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://datatables.net/tn/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://dev.w3.org/csswg/css3-tables-algorithms/Overview.src.htm
Source: chromecache_137.2.dr, chromecache_121.2.dr, chromecache_97.2.dr, chromecache_145.2.dr	String found in binary or memory: http://eligrey.com
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://encoding.spec.whatwg.org/#big5-encoder
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://fontforge.org/bezier.html
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://icu-project.org/docs/papers/gb18030.html
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://jsperf.com/html-decode
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://jsperf.com/tostring-v-check
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://ktug.org/~nomos/harfbuzz-hangul/hangulshaper.pdf
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://me.abelcheung.org/articles/research/what-is-cp951/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://moztw.org/docs/big5/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://narwhaljs.org)
Source: chromecache_137.2.dr, chromecache_121.2.dr, chromecache_97.2.dr, chromecache_145.2.dr	String found in binary or memory: http://pdfmake.org
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://purl.eligrey.com/github/FileSaver.js/blob/master/FileSaver.js
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://semver.org/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://source.icu-project.org/repos/icu/data/trunk/charset/data/xml/gb-18030-2000.xml
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://stackoverflow.com/a/22747272/680742
Source: chromecache_130.2.dr, chromecache_106.2.dr	String found in binary or memory: http://stackoverflow.com/questions/8898412
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://tools.ietf.org/html/rfc3501#section-5.1.3
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://tools.ietf.org/html/rfc3501#section-5.1.3)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://unicode.org/Public/MAPPINGS/VENDORS/APPLE/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://unicode.org/Public/MAPPINGS/VENDORS/APPLE/Readme.txt
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://wiki.commonjs.org/wiki/Unit_Testing/1.0
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_108.2.dr, chromecache_130.2.dr, chromecache_118.2.dr, chromecache_106.2.dr	String found in binary or memory: http://www.datatables.net
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.freesoft.org/CIE/RFC/1942/18.htm
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.freetype.org/freetype2/docs/glyphs/glyphs-6.html#section-2)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.haible.de/bruno/charsets/conversion-tables/Big5.html
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.khngai.com/chinese/charmap/tblgbk.php?page=0
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.ogcio.gov.hk/en/business/tech_promotion/ccli/terms/doc/2003cmp_2008.txt
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.ogcio.gov.hk/tc/business/tech_promotion/ccli/terms/doc/hkscs-2008-big5-iso.txt
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://www.sprymedia.co.uk/dataTables/lang.txt
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.unicode.org/Public/MAPPINGS/OBSOLETE/EASTASIA/OTHER/BIG5.TXT)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.unicode.org/Public/MAPPINGS/VENDORS/MICSFT/WINDOWS/CP950.TXT
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.unicode.org/Public/UNIDATA/PropertyValueAliases.txt.
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.whatwg.org/specs/web-apps/current-work/multipage/comms.html#crossDocumentMessages
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www8.plala.or.jp/tkubota1/unicode-symbols-map2.html
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://ajax.googleapis.com/ajax/libs/%
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugs.freedesktop.org/show_bug.cgi?id=59118
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.gnome.org/show_bug.cgi?id=437633
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.gnome.org/show_bug.cgi?id=676343
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=162431
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=310299
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=695438.
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=912470#c31
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://code.google.com/p/v8/issues/detail?id=687
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://datatables.net/tn/17
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://developer.apple.com/fonts/TrueType-Reference-Manual/RM09/AppendixF.html
Source: chromecache_137.2.dr, chromecache_121.2.dr, chromecache_97.2.dr, chromecache_145.2.dr	String found in binary or memory: https://developer.apple.com/library/safari/documentation/Tools/Conceptual/SafariExtensionGuide/Worki
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Array/isArray
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/String/trim
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://developer.mozilla.org/en/DOM/window.postMessage
Source: chromecache_125.2.dr, chromecache_111.2.dr	String found in binary or memory: https://fengyuanchen.github.io/datepicker
Source: chromecache_116.2.dr, chromecache_143.2.dr, chromecache_141.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_116.2.dr, chromecache_143.2.dr, chromecache_141.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_109.2.dr, chromecache_142.2.dr, chromecache_115.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/DavidBruant/Map-Set.prototype.toJSON
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Javascript-source-file-encodings
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Node-v4-compatibility
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Use-Buffers-when-decoding
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/behdad/harfbuzz/blob/master/src/hb-ot-shape-complex-arabic.cc
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/behdad/harfbuzz/blob/master/src/hb-ot-shape-complex-indic.cc
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/behdad/harfbuzz/blob/master/src/hb-ot-shape-fallback.cc
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/eligrey/FileSaver.js/blob/master/LICENSE.md
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/facebook/regenerator/issues/274
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/feross/buffer/blob/680e9e5e488f22aac27599a57dc844a6315928dd/index.js
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/feross/buffer/pull/97
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ljharb/function.prototype.name/blob/adeeeec8bfcc6068b187d7d9fb3d5bb1d3a30899/impl
Source: chromecache_102.2.dr, chromecache_124.2.dr	String found in binary or memory: https://github.com/select2/select2/blob/master/LICENSE.md
Source: chromecache_109.2.dr, chromecache_142.2.dr, chromecache_115.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_142.2.dr, chromecache_115.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/173
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/86#issuecomment-115759028
Source: chromecache_130.2.dr, chromecache_106.2.dr	String found in binary or memory: https://jsperf.com/childnodes-array-slice-vs-loop
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://jsperf.com/flatten-an-array-loop-vs-reduce/2
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://maps-api-ssl.google.com/maps?jsapiRedirect=true&file=googleapi
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://maps.googleapis.com/maps/api/js?jsapiRedirect=true
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://people.mozilla.org/~jorendorff/es6-draft.html#sec-generatorresume
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-map.from
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-map.of
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-set.from
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-set.of
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tools.ietf.org/html/rfc2152
Source: chromecache_121.2.dr, chromecache_97.2.dr	String found in binary or memory: https://www.ecma-international.org/news/TC45_current_work/Office%20Open%20XML%20Part%204%20-%20Marku
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.cn/charts/%
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.cn/charts/debug/%
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.com/charts/%
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.com/charts/debug/%
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.com/inputtools/js/ita/inputtools_3.js

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789

Source: classification engine

Classification label: clean0.win@16/80@22/11

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2344 --field-trial-handle=2300,i,10426999861624395627,7215172433011791357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://usercenter.ncodesolutions.com:8080/KYCResume/login"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2344 --field-trial-handle=2300,i,10426999861624395627,7215172433011791357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior

Click here to start
Slideshow Behavior Animation

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
151.101.1.229	unknown	United States	54113	FASTLYUS	false
103.20.105.36	usercenter.ncodesolutions.com	India	58702	NCODE-INnCodeSolutions-ADivisionofGNFCLtdIN	false
104.26.8.123	cdn.datatables.net	United States	13335	CLOUDFLARENETUS	false
151.101.193.229	jsdelivr.map.fastly.net	United States	54113	FASTLYUS	false
142.250.181.132	www.google.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
172.67.75.33	unknown	United States	13335	CLOUDFLARENETUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
104.17.25.14	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
jsdelivr.map.fastly.net	151.101.193.229	true
a.nel.cloudflare.com	35.190.80.1	true
cdn.datatables.net	104.26.8.123	true
cdnjs.cloudflare.com	104.17.24.14	true
www.google.com	142.250.181.132	true
usercenter.ncodesolutions.com	103.20.105.36	true
_8080._https.usercenter.ncodesolutions.com	unknown	unknown
cdn.jsdelivr.net	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/js/all.min.js	false	high
https://usercenter.ncodesolutions.com:8080/KYCResume/login	false	unknown
https://cdn.datatables.net/searchbuilder/1.4.2/css/searchBuilder.bootstrap5.css	false	high
https://cdn.datatables.net/responsive/2.4.1/js/responsive.bootstrap5.js	false	high
https://cdn.datatables.net/searchbuilder/1.4.2/js/searchBuilder.bootstrap5.js	false	high
https://a.nel.cloudflare.com/report/v4?s=TW07%2FCD9fZJa4mSCQLgIvUoUlyQLFm5aAIeiAKeCqfF6%2F5G%2FfbsgRZ0knqe0GHavGfHO9ypfPIcWDvKA62Y%2FU3SW1PTFRw%2FZX7HAQfPg7sfpN175zudh0%2Bc6Ch1w3uVWfkXgJA%3D%3D	false	high
https://cdn.jsdelivr.net/npm/bootstrap-icons@1.7.2/font/bootstrap-icons.css	false	high
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css	false	high
https://cdn.jsdelivr.net/npm/sweetalert2@11.7.3/dist/sweetalert2.all.min.js	false	high
https://cdn.datatables.net/buttons/2.3.6/js/buttons.html5.js	false	high
https://cdn.datatables.net/responsive/2.4.1/js/dataTables.responsive.js	false	high
https://cdnjs.cloudflare.com/ajax/libs/jquery.blockUI/2.70/jquery.blockUI.min.js	false	high
https://cdn.jsdelivr.net/npm/sweetalert2@11.7.3/dist/sweetalert2.min.css	false	high
https://cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.36/vfs_fonts.js	false	high
https://cdn.datatables.net/searchbuilder/1.4.2/js/dataTables.searchBuilder.js	false	high
https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css	false	high
https://cdn.datatables.net/1.13.4/js/jquery.dataTables.js	false	high
https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js	false	high
https://cdn.datatables.net/responsive/2.4.1/css/responsive.bootstrap5.css	false	high
https://cdn.datatables.net/1.13.4/js/dataTables.bootstrap5.js	false	high
https://cdn.datatables.net/fixedcolumns/4.3.0/js/dataTables.fixedColumns.min.js	false	high
https://cdn.jsdelivr.net/npm/select2@4.1.0-rc.0/dist/js/select2.min.js	false	high
https://cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.36/pdfmake.js	false	high

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 100	ASCII text	107183A2FAB7BD9F858423A4D7452721	81A66A9EB2DE9CB0ACE01BF25D52B376B858E960	BB18EC4BD71814B4E39A5AFC8F98BE0EABCE2C206E811CC4796C5431665E6174
Chrome Cache Entry: 101	ASCII text, with very long lines (333)	02EB49C34E873C480795ADC57A10EF05	5F4A7E8DF66357DD764B3B04F8D741B9096BFB16	E5FD45121E19AA4B30CDE8B6135624A623FB43F6582AE0D3FE215467FC8329DF
Chrome Cache Entry: 102	Unicode text, UTF-8 text, with very long lines (64127)	7C98B05DD4F3D7C693EB34690737F0D8	6DE10E74A992FCA15E803D910D130F826631CB86	F7244FFF610595B944F76BF3080D74E3AF42B5DD234F8F079E698CC39AC966B0
Chrome Cache Entry: 103	Unicode text, UTF-8 text	2BDD6F7BDBB8039D4438C152404EEB53	291DBC4B8196F4515676FABDA6DEA1CA3EBB2551	682A2FE5368B274A1C4090357EE6B08D4AA7D61035C684D8039744D0F2F79B85
Chrome Cache Entry: 104	ASCII text, with no line terminators	02B622E2CBEDA9712970BF15045D0891	7257FDDFD9FFCBC43D1C32E8A1F807A9E4FA5005	AFB6E3E3DFBE3316B3DF6E741DC4E2FEE875532C34EA87B81044BC628BF4E66A
Chrome Cache Entry: 105	Web Open Font Format (Version 2), TrueType, length 18588, version 1.0	115C2D84727B41DA5E9B4394887A8C40	44F495A7F32620E51ACCA2E78F7E0615CB305781	AE0E442895406E9922237108496C2CD60F4947649A826463E2DA9860B5C25DD6
Chrome Cache Entry: 106	Unicode text, UTF-8 text	04C57CC9953B3D9DE23E8280014B5AB7	0C5E632A1A9D54B761B1AE85259D74EDC1F3764F	26E19EFA27C29D4096023B54A804F0A814A46DBE1881755C5AFFE44F5896DA41
Chrome Cache Entry: 107	Unicode text, UTF-8 text	E0945C9605DF84A553A0561BA3C33258	1E40AED5E9F69B38FFD5DCCEF0DC951CA344E747	F7F2BDA55F8416CE217E8B4FEF6FC09E73453689ED2302DEEBCBA37A4B6FCB56
Chrome Cache Entry: 108	Unicode text, UTF-8 text, with very long lines (1716)	BB0237CD097F81BBD929F467B69FB47E	9DA038B1E99259A8BA53720DB1C4FB43820A73D6	7D826D1D841F78418E3F8ABF2977329DEDAC4E7D2B8FD3F0FF966DB0106367D6
Chrome Cache Entry: 109	Unicode text, UTF-8 text, with very long lines (65306)	ABE91756D18B7CD60871A2F47C1E8192	7C1C9E0573E5CEA8BAD3733BE2FC63AA8C68EA8D	7633B7C0C97D19E682FEEE8AFA2738523FCB2A14544A550572CAEECD2EEFE66B
Chrome Cache Entry: 110	Web Open Font Format (Version 2), TrueType, length 18536, version 1.0	8EFF0B8045FD1959E117F85654AE7770	227FEE13CEB7C410B5C0BB8000258B6643CB6255	89978E658E840B927DDDB5CB3A835C7D8526ECE79933BD9F3096B301FE1A8571
Chrome Cache Entry: 111	ASCII text, with very long lines (18576)	071E5BBEF2540086F9B3486D9ECB7A7A	8E6FC19C330F2634252F9B00D934501E3A2A0561	32F8D51E6CB30BDDC20CB2046394FE8684BAE7DBEC9D1D27C3DABDF823090D61
Chrome Cache Entry: 112	ASCII text	C63678BD3929DC4DEC54CC5AA73E5F89	202B87DA53EC46BE0DA401374A3050D2922AB326	4BFE3E4CC57BEB5C10F6782522C134661E028545060C48F08D336DDD07DBA831
Chrome Cache Entry: 113	ASCII text	E23C7E3F21DACA3C3834384576C8C840	D2D88C120F9D98D59064BB154E7A467A9BDE9BAF	9A7C94C811CA26B4AA6C6FDE50ECF51C8A6936B5CCE6DADAC03AD191C32961FB
Chrome Cache Entry: 114	Unicode text, UTF-8 text	CE0060D924A90820590237D5E6719B31	30704E7681E37B1D34F951D5FBC2576C09CA3A15	341BC41A388706A10645BF0AC87608F5A5A6A257C23E5EEE53FAF7229D4955A5
Chrome Cache Entry: 115	ASCII text, with very long lines (65299)	0AA8D64E726C4A57ADB5C88F9115996B	901169527507FF9E662CF64D8E361F359308970D	7E1F1503DF765CCA5E099891B94E318A2EF95081BA2AF1EB6D417CC884BFDBFE
Chrome Cache Entry: 116	ASCII text, with very long lines (65317)	78CDCBFAC5817D1DCA139718D1B9A8F5	980040AF664FDE2BF783E718B2BD1B499E4F8622	26FC9C78BB9AE90716D5682A72D6695D805EB77EC3361AA9A454383446A2E5FF
Chrome Cache Entry: 117	ASCII text, with very long lines (65480)	795E143B8F4EEB5089B2638CDECA7006	914C1DB78046ED67723702DE671B32A0B591206F	5CB81FA70754070475938E9859359A268122C9B62CAC154EBB8E120E812662CC
Chrome Cache Entry: 118	Unicode text, UTF-8 text, with very long lines (1716)	BB0237CD097F81BBD929F467B69FB47E	9DA038B1E99259A8BA53720DB1C4FB43820A73D6	7D826D1D841F78418E3F8ABF2977329DEDAC4E7D2B8FD3F0FF966DB0106367D6
Chrome Cache Entry: 119	ASCII text, with very long lines (16263)	E71C39430469A3EEA74514A2B48F6536	913F9F7B9535AEC790CA3CE9D6E35ACFAF369993	CDA4A81C187015D95ED2C71F1841540B08203CDEC5FA2A7D5D1825A3C2166F8C
Chrome Cache Entry: 120	Unicode text, UTF-8 text, with very long lines (8548)	CECC2D96784FC2426793ED5ACB39381C	AA7E02ED47C4D4EE4AB5F873B5A2D76673727820	87C999EBC00C9B6D46DE96698A28C48EC1D6EEE41A33D697C51A8C4DC6844BC9
Chrome Cache Entry: 121	Unicode text, UTF-8 text, with very long lines (326)	9126D7DB556A7D16210BCA62414C9B7F	303E1AF477E5DBDEB22B33C26A7676FFD311A70F	5C3D7EC775143B1187DCD0C7EB28F93F58DF2704C75D291330D5DC79CA95E8BD
Chrome Cache Entry: 122	Unicode text, UTF-8 text	E0945C9605DF84A553A0561BA3C33258	1E40AED5E9F69B38FFD5DCCEF0DC951CA344E747	F7F2BDA55F8416CE217E8B4FEF6FC09E73453689ED2302DEEBCBA37A4B6FCB56
Chrome Cache Entry: 123	ASCII text, with very long lines (43307)	9F66F601E8906687E0D8F321FD74D996	D8BEDB3985D54F8C4CD810C99707D675F4AD6C27	B741437F08FF5A83072016E615FB8EB59BF5C2D03DEFB4027EC151DE9D4AE0DA
Chrome Cache Entry: 124	Unicode text, UTF-8 text, with very long lines (64127)	7C98B05DD4F3D7C693EB34690737F0D8	6DE10E74A992FCA15E803D910D130F826631CB86	F7244FFF610595B944F76BF3080D74E3AF42B5DD234F8F079E698CC39AC966B0
Chrome Cache Entry: 125	ASCII text, with very long lines (18576)	071E5BBEF2540086F9B3486D9ECB7A7A	8E6FC19C330F2634252F9B00D934501E3A2A0561	32F8D51E6CB30BDDC20CB2046394FE8684BAE7DBEC9D1D27C3DABDF823090D61
Chrome Cache Entry: 126	Unicode text, UTF-8 text	17DC1A6FC969E8A3F78126AA836FDA48	8476ABB20AFA2E7AC1A112850D23C1B28FDFF584	0DA67DE2D140059443DAC0C78A2853627274977FE20AF2ABD56EEB3F2F753378
Chrome Cache Entry: 127	ASCII text, with very long lines (43307)	9F66F601E8906687E0D8F321FD74D996	D8BEDB3985D54F8C4CD810C99707D675F4AD6C27	B741437F08FF5A83072016E615FB8EB59BF5C2D03DEFB4027EC151DE9D4AE0DA
Chrome Cache Entry: 128	Unicode text, UTF-8 text	CE0060D924A90820590237D5E6719B31	30704E7681E37B1D34F951D5FBC2576C09CA3A15	341BC41A388706A10645BF0AC87608F5A5A6A257C23E5EEE53FAF7229D4955A5
Chrome Cache Entry: 129	Unicode text, UTF-8 text, with very long lines (8548)	CECC2D96784FC2426793ED5ACB39381C	AA7E02ED47C4D4EE4AB5F873B5A2D76673727820	87C999EBC00C9B6D46DE96698A28C48EC1D6EEE41A33D697C51A8C4DC6844BC9
Chrome Cache Entry: 130	Unicode text, UTF-8 text	04C57CC9953B3D9DE23E8280014B5AB7	0C5E632A1A9D54B761B1AE85259D74EDC1F3764F	26E19EFA27C29D4096023B54A804F0A814A46DBE1881755C5AFFE44F5896DA41
Chrome Cache Entry: 131	ASCII text, with very long lines (2186)	32BC41D964FAA1B95D9C61FC443DF579	02D3F83DAC14FE996BABBFE332779ED182D39D1C	369AE154EAB37B7ADA7776B934833183BB053EBD1D0255F70EF8944F65CABB0C
Chrome Cache Entry: 132	Unicode text, UTF-8 text	17DC1A6FC969E8A3F78126AA836FDA48	8476ABB20AFA2E7AC1A112850D23C1B28FDFF584	0DA67DE2D140059443DAC0C78A2853627274977FE20AF2ABD56EEB3F2F753378
Chrome Cache Entry: 133	ASCII text, with very long lines (65480)	795E143B8F4EEB5089B2638CDECA7006	914C1DB78046ED67723702DE671B32A0B591206F	5CB81FA70754070475938E9859359A268122C9B62CAC154EBB8E120E812662CC
Chrome Cache Entry: 134	Unicode text, UTF-8 text	2BDD6F7BDBB8039D4438C152404EEB53	291DBC4B8196F4515676FABDA6DEA1CA3EBB2551	682A2FE5368B274A1C4090357EE6B08D4AA7D61035C684D8039744D0F2F79B85
Chrome Cache Entry: 135	ASCII text	AA58E08DB3335A37FFB37AB2637A376B	93E8E59AED9BE2BAD116390E8F443CD40D5232E2	B245B0C11D31A18022BC98ACA0B0E41EAC90C1FEFF6140AAE7A4DEC2F8FC58BE
Chrome Cache Entry: 136	ASCII text, with very long lines (10935), with no line terminators	158D08F1210048ACFF75240FB84CB583	17C6D50C315BF4BC1BC18167E317636B623E12D6	F7044CD37754C3A0010ACF8053AF566CADF7A24B6B9576A611732FC54685F8A5
Chrome Cache Entry: 137	ASCII text	2E2F0419E2DF56D7DBB4E12FAF917719	050E37590F117524391CA4C9F25B7C4940BA8D46	2A72924A0C88D6E79B8EA682CFCA60C6D49FACB8019FC98B8DFF31F11540DCE9
Chrome Cache Entry: 138	Web Open Font Format (Version 2), TrueType, length 18492, version 1.0	7FDA4C62C1BDEAE7A08E6FD438104BAC	B1F626E78F5F6D7BE993303A49EB81F0FA4CE57C	4DBD328E347E890A801D51F9A5F8D38A3EFD51EC34C0AA22CC83D0A95D6D9D71
Chrome Cache Entry: 139	ASCII text	5789386D53A541ACF767E1C44386DF0B	842B7AB9DF86D00C7A04A3368347EA1F72FD4A3D	17B40D2C069A6CD6FE75E3B085CDD6287F41A3EB4483E1BDC371A3D1F02D578C
Chrome Cache Entry: 140	ASCII text	C63678BD3929DC4DEC54CC5AA73E5F89	202B87DA53EC46BE0DA401374A3050D2922AB326	4BFE3E4CC57BEB5C10F6782522C134661E028545060C48F08D336DDD07DBA831
Chrome Cache Entry: 141	ASCII text, with very long lines (65317)	78CDCBFAC5817D1DCA139718D1B9A8F5	980040AF664FDE2BF783E718B2BD1B499E4F8622	26FC9C78BB9AE90716D5682A72D6695D805EB77EC3361AA9A454383446A2E5FF
Chrome Cache Entry: 142	ASCII text, with very long lines (65299)	0AA8D64E726C4A57ADB5C88F9115996B	901169527507FF9E662CF64D8E361F359308970D	7E1F1503DF765CCA5E099891B94E318A2EF95081BA2AF1EB6D417CC884BFDBFE
Chrome Cache Entry: 143	ASCII text, with very long lines (52276)	DED1C367363E8B20BDC6A19B8350A737	8C06D82739D14B094FF6D9036021A252BD1D985D	1EDB1725A9EA8CA4DCF2F5508CEE183218AA1685E47C1B23056717F754F58EBF
Chrome Cache Entry: 144	ASCII text, with very long lines (2186)	32BC41D964FAA1B95D9C61FC443DF579	02D3F83DAC14FE996BABBFE332779ED182D39D1C	369AE154EAB37B7ADA7776B934833183BB053EBD1D0255F70EF8944F65CABB0C
Chrome Cache Entry: 145	ASCII text	2E2F0419E2DF56D7DBB4E12FAF917719	050E37590F117524391CA4C9F25B7C4940BA8D46	2A72924A0C88D6E79B8EA682CFCA60C6D49FACB8019FC98B8DFF31F11540DCE9
Chrome Cache Entry: 97	Unicode text, UTF-8 text, with very long lines (326)	9126D7DB556A7D16210BCA62414C9B7F	303E1AF477E5DBDEB22B33C26A7676FFD311A70F	5C3D7EC775143B1187DCD0C7EB28F93F58DF2704C75D291330D5DC79CA95E8BD
Chrome Cache Entry: 98	ASCII text, with very long lines (10935), with no line terminators	158D08F1210048ACFF75240FB84CB583	17C6D50C315BF4BC1BC18167E317636B623E12D6	F7044CD37754C3A0010ACF8053AF566CADF7A24B6B9576A611732FC54685F8A5
Chrome Cache Entry: 99	ASCII text, with very long lines (20712)	53EF696D417D353EFBD07C105F694756	F37FBCF88F577F3152B8EC113D83B843DC6E2BC8	B166631D0898F5FBE179400EA31AECCF0F56A61977CEA7D56B3D6464A12FA2DF

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Source: https://usercenter.ncodesolutions.com:8080/KYCResume/resources/js/AesUtil.js

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	TCP traffic detected without corresponding DNS query: 23.50.131.216
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://usercenter.ncodesolutions.com:8080sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.4.0/js/all.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://usercenter.ncodesolutions.com:8080sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/datepicker/1.0.10/datepicker.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/pdfmake.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/sweetalert2@11.7.3/dist/sweetalert2.min.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/select2@4.1.0-rc.0/dist/css/select2.min.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery.blockUI/2.70/jquery.blockUI.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/vfs_fonts.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap-icons@1.7.2/font/bootstrap-icons.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/sweetalert2@11.7.3/dist/sweetalert2.all.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/css/buttons.bootstrap5.css HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/css/responsive.bootstrap5.css HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/css/searchBuilder.bootstrap5.css HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/jquery.dataTables.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/dataTables.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/dataTables.buttons.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/select2@4.1.0-rc.0/dist/js/select2.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery.blockUI/2.70/jquery.blockUI.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/dataTables.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/datepicker/1.0.10/datepicker.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.html5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/dataTables.responsive.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/responsive.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/js/dataTables.searchBuilder.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/dataTables.buttons.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/sweetalert2@11.7.3/dist/sweetalert2.all.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/js/searchBuilder.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1.13.4/js/jquery.dataTables.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/vfs_fonts.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fixedcolumns/4.3.0/js/dataTables.fixedColumns.min.js HTTP/1.1Host: cdn.datatables.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://usercenter.ncodesolutions.com:8080/KYCResume/loginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/select2@4.1.0-rc.0/dist/js/select2.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/responsive.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /responsive/2.4.1/js/dataTables.responsive.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /buttons/2.3.6/js/buttons.html5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.4.0/js/all.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /searchbuilder/1.4.2/js/searchBuilder.bootstrap5.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pdfmake/0.1.36/pdfmake.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fixedcolumns/4.3.0/js/dataTables.fixedColumns.min.js HTTP/1.1Host: cdn.datatables.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: usercenter.ncodesolutions.com
Source: global traffic	DNS traffic detected: DNS query: _8080._https.usercenter.ncodesolutions.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: cdn.datatables.net
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com

Source: unknown

Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://api.jquery.com/jQuery.ajax/)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://blog.hackers-cafe.net/2009/06/how-to-calculate-bezier-curves-bounding.html
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://datatables.net/license
Source: chromecache_130.2.dr, chromecache_106.2.dr	String found in binary or memory: http://datatables.net/license/mit
Source: chromecache_140.2.dr, chromecache_112.2.dr	String found in binary or memory: http://datatables.net/manual/styling/bootstrap
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://datatables.net/tn/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://dev.w3.org/csswg/css3-tables-algorithms/Overview.src.htm
Source: chromecache_137.2.dr, chromecache_121.2.dr, chromecache_97.2.dr, chromecache_145.2.dr	String found in binary or memory: http://eligrey.com
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://encoding.spec.whatwg.org/#big5-encoder
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://fontforge.org/bezier.html
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://icu-project.org/docs/papers/gb18030.html
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://jsperf.com/html-decode
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://jsperf.com/tostring-v-check
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://ktug.org/~nomos/harfbuzz-hangul/hangulshaper.pdf
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://me.abelcheung.org/articles/research/what-is-cp951/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://moztw.org/docs/big5/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://narwhaljs.org)
Source: chromecache_137.2.dr, chromecache_121.2.dr, chromecache_97.2.dr, chromecache_145.2.dr	String found in binary or memory: http://pdfmake.org
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://purl.eligrey.com/github/FileSaver.js/blob/master/FileSaver.js
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://semver.org/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://source.icu-project.org/repos/icu/data/trunk/charset/data/xml/gb-18030-2000.xml
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://stackoverflow.com/a/22747272/680742
Source: chromecache_130.2.dr, chromecache_106.2.dr	String found in binary or memory: http://stackoverflow.com/questions/8898412
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://tools.ietf.org/html/rfc3501#section-5.1.3
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://tools.ietf.org/html/rfc3501#section-5.1.3)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://unicode.org/Public/MAPPINGS/VENDORS/APPLE/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://unicode.org/Public/MAPPINGS/VENDORS/APPLE/Readme.txt
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://wiki.commonjs.org/wiki/Unit_Testing/1.0
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_108.2.dr, chromecache_130.2.dr, chromecache_118.2.dr, chromecache_106.2.dr	String found in binary or memory: http://www.datatables.net
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.freesoft.org/CIE/RFC/1942/18.htm
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.freetype.org/freetype2/docs/glyphs/glyphs-6.html#section-2)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.haible.de/bruno/charsets/conversion-tables/Big5.html
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.khngai.com/chinese/charmap/tblgbk.php?page=0
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.ogcio.gov.hk/en/business/tech_promotion/ccli/terms/doc/2003cmp_2008.txt
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.ogcio.gov.hk/tc/business/tech_promotion/ccli/terms/doc/hkscs-2008-big5-iso.txt
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: http://www.sprymedia.co.uk/dataTables/lang.txt
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.unicode.org/Public/MAPPINGS/OBSOLETE/EASTASIA/OTHER/BIG5.TXT)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.unicode.org/Public/MAPPINGS/VENDORS/MICSFT/WINDOWS/CP950.TXT
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.unicode.org/Public/UNIDATA/PropertyValueAliases.txt.
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www.whatwg.org/specs/web-apps/current-work/multipage/comms.html#crossDocumentMessages
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: http://www8.plala.or.jp/tkubota1/unicode-symbols-map2.html
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://ajax.googleapis.com/ajax/libs/%
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugs.freedesktop.org/show_bug.cgi?id=59118
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.gnome.org/show_bug.cgi?id=437633
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.gnome.org/show_bug.cgi?id=676343
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=162431
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=310299
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=695438.
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=912470#c31
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://code.google.com/p/v8/issues/detail?id=687
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://datatables.net/tn/17
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://developer.apple.com/fonts/TrueType-Reference-Manual/RM09/AppendixF.html
Source: chromecache_137.2.dr, chromecache_121.2.dr, chromecache_97.2.dr, chromecache_145.2.dr	String found in binary or memory: https://developer.apple.com/library/safari/documentation/Tools/Conceptual/SafariExtensionGuide/Worki
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Array/isArray
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/String/trim
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://developer.mozilla.org/en/DOM/window.postMessage
Source: chromecache_125.2.dr, chromecache_111.2.dr	String found in binary or memory: https://fengyuanchen.github.io/datepicker
Source: chromecache_116.2.dr, chromecache_143.2.dr, chromecache_141.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_116.2.dr, chromecache_143.2.dr, chromecache_141.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfABc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBBc4.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCBc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCRc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfChc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCxc4EsA.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_135.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_109.2.dr, chromecache_142.2.dr, chromecache_115.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/DavidBruant/Map-Set.prototype.toJSON
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Javascript-source-file-encodings
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Node-v4-compatibility
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Use-Buffers-when-decoding
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/behdad/harfbuzz/blob/master/src/hb-ot-shape-complex-arabic.cc
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/behdad/harfbuzz/blob/master/src/hb-ot-shape-complex-indic.cc
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/behdad/harfbuzz/blob/master/src/hb-ot-shape-fallback.cc
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/eligrey/FileSaver.js/blob/master/LICENSE.md
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/facebook/regenerator/issues/274
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/feross/buffer/blob/680e9e5e488f22aac27599a57dc844a6315928dd/index.js
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/feross/buffer/pull/97
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/ljharb/function.prototype.name/blob/adeeeec8bfcc6068b187d7d9fb3d5bb1d3a30899/impl
Source: chromecache_102.2.dr, chromecache_124.2.dr	String found in binary or memory: https://github.com/select2/select2/blob/master/LICENSE.md
Source: chromecache_109.2.dr, chromecache_142.2.dr, chromecache_115.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_142.2.dr, chromecache_115.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/173
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/86#issuecomment-115759028
Source: chromecache_130.2.dr, chromecache_106.2.dr	String found in binary or memory: https://jsperf.com/childnodes-array-slice-vs-loop
Source: chromecache_108.2.dr, chromecache_118.2.dr	String found in binary or memory: https://jsperf.com/flatten-an-array-loop-vs-reduce/2
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://maps-api-ssl.google.com/maps?jsapiRedirect=true&file=googleapi
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://maps.googleapis.com/maps/api/js?jsapiRedirect=true
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://people.mozilla.org/~jorendorff/es6-draft.html#sec-generatorresume
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-map.from
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-map.of
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-set.from
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tc39.github.io/proposal-setmap-offrom/#sec-set.of
Source: chromecache_137.2.dr, chromecache_145.2.dr	String found in binary or memory: https://tools.ietf.org/html/rfc2152
Source: chromecache_121.2.dr, chromecache_97.2.dr	String found in binary or memory: https://www.ecma-international.org/news/TC45_current_work/Office%20Open%20XML%20Part%204%20-%20Marku
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.cn/charts/%
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.cn/charts/debug/%
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.com/charts/%
Source: chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.com/charts/debug/%
Source: chromecache_144.2.dr, chromecache_131.2.dr	String found in binary or memory: https://www.gstatic.com/inputtools/js/ita/inputtools_3.js

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789

Source: classification engine

Classification label: clean0.win@16/80@22/11

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2344 --field-trial-handle=2300,i,10426999861624395627,7215172433011791357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://usercenter.ncodesolutions.com:8080/KYCResume/login"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2344 --field-trial-handle=2300,i,10426999861624395627,7215172433011791357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1578292
Product:	CloudBasic
Start time:	14:38:27
Start date:	19.12.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://usercenter.ncodesolutions.com:8080/KYCResume/login

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://usercenter.ncodesolutions.com:8080/KYCResume/login

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://usercenter.ncodesolutions.com:8080/KYCResume/login