Edit tour
Windows
Analysis Report
beacon_x86.exe
Overview
General Information
| Sample name: | beacon_x86.exe |
| Analysis ID: | 1587368 |
| MD5: | bffe5dbe4d4ececc6652360ce37b8075 |
| SHA1: | 9e3ccfe33a88fd70ba6b5ac8f72b3bc0c760e798 |
| SHA256: | c86426eeb24a042903b302c21513defb1e61535fc008b7c9e847113ddb798666 |
| Tags: | CobaltStrikeexeuser-lontze7 |
| Infos: |  |
 | |
Detection
CobaltStrike
| Score: | 96 |
| Range: | 0 - 100 |
| Whitelisted: | false |
| Confidence: | 100% |
Signatures
Antivirus / Scanner detection for submitted sample
Found malware configuration
Malicious sample detected (through community Yara rule)
Multi AV Scanner detection for submitted file
Yara detected CobaltStrike
AI detected suspicious sample
C2 URLs / IPs found in malware configuration
Found potential dummy code loops (likely to delay analysis)
Machine Learning detection for sample
Contains functionality to access loader functionality (e.g. LdrGetProcedureAddress)
Contains functionality to call native functions
Contains functionality to check if a debugger is running (IsDebuggerPresent)
Contains functionality to dynamically determine API calls
Contains functionality to execute programs as a different user
Contains functionality to launch a process as a different user
Contains functionality to open a port and listen for incoming connection (possibly a backdoor)
Contains functionality to query locales information (e.g. system language)
Contains functionality to read the PEB
Contains functionality which may be used to detect a debugger (GetProcessHeap)
Detected potential crypto function
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)
Found decision node followed by non-executed suspicious APIs
Found evasive API chain (date check)
Found large amount of non-executed APIs
Found potential string decryption / allocating functions
Internet Provider seen in connection with other malware
May sleep (evasive loops) to hinder dynamic analysis
Program does not show much activity (idle)
Sample execution stops while process was sleeping (likely an evasion)
Uses 32bit PE files
Uses Microsoft's Enhanced Cryptographic Provider
Uses a known web browser user agent for HTTP communication
Uses code obfuscation techniques (call, push, ret)
Yara signature match
Classification
- System is w10x64
beacon_x86.exe (PID: 7776 cmdline: "C:\Users\ user\Deskt op\beacon_ x86.exe" MD5: BFFE5DBE4D4ECECC6652360CE37B8075)
- cleanup
| Name | Description | Attribution | Blogpost URLs | Link |
|---|---|---|---|---|
| Cobalt Strike, CobaltStrike | Cobalt Strike is a paid penetration testing product that allows an attacker to deploy an agent named 'Beacon' on the victim machine. Beacon includes a wealth of functionality to the attacker, including, but not limited to command execution, key logging, file transfer, SOCKS proxying, privilege escalation, mimikatz, port scanning and lateral movement. Beacon is in-memory/file-less, in that it consists of stageless or multi-stage shellcode that once loaded by exploiting a vulnerability or executing a shellcode loader, will reflectively load itself into the memory of a process without touching the disk. It supports C2 and staging over HTTP, HTTPS, DNS, SMB named pipes as well as forward and reverse TCP; Beacons can be daisy-chained. Cobalt Strike comes with a toolkit for developing shellcode loaders, called Artifact Kit.The Beacon implant has become popular amongst targeted attackers and criminal users as it is well written, stable, and highly customizable. |
{"BeaconType": ["HTTP"], "Port": 80, "SleepTime": 15024, "MaxGetSize": 3341464, "Jitter": 45, "C2Server": "8.148.6.140,/api/v1/get", "HttpPostUri": "/api/v1/post", "Malleable_C2_Instructions": ["Base64 decode"], "HttpGet_Verb": "GET", "HttpPost_Verb": "POST", "HttpPostChunk": 0, "Spawnto_x86": "%allusersprofile%\\CrashReport\\CrashReport.exe", "Spawnto_x64": "%allusersprofile%\\CrashReport\\CrashReport64.exe", "CryptoScheme": 0, "Proxy_Behavior": "Use IE settings", "Watermark": 666666666, "bStageCleanup": "True", "bCFGCaution": "False", "KillDate": 0, "bProcInject_StartRWX": "False", "bProcInject_UseRWX": "False", "bProcInject_MinAllocSize": 10192, "ProcInject_PrependAppend_x86": ["Dx+EAAAAAAAPHwAPH0QAAJAPH4QAAAAAAA==", "Dx9EAAAPH0QAAA8fAA8fgAAAAABmDx9EAABmDx+EAAAAAAAPH0AADx9AAA8fQAA="], "ProcInject_PrependAppend_x64": ["kA8fQAAPH4QAAAAAAGYPH0QAAA8fQAAPH4QAAAAAAJBmDx+EAAAAAAAPH0QAAJAPHwAPH4AAAAAADx9AAA8fQABQWGaQZg8fhAAAAAAAZg8fhAAAAAAADx8A", "Dx+AAAAAAA8fhAAAAAAADx9EAABmDx9EAACQDx9EAAAPH4AAAAAAUFgPH4AAAAAADx8ADx+AAAAAAA8fgAAAAAAPH0AADx8AZg8fRAAADx9EAAAPH4QAAAAAAA8fQACQkA=="], "ProcInject_Execute": ["ntdll:RtlUserThreadStart", "CreateThread", "NtQueueApcThread-s", "CreateRemoteThread", "RtlCreateUserThread"], "ProcInject_AllocationMethod": "VirtualAllocEx", "bUsesCookies": "True", "HostHeader": ""}| Source | Rule | Description | Author | Strings |
|---|---|---|---|---|
| JoeSecurity_CobaltStrike_4 | Yara detected CobaltStrike | Joe Security |
| Source | Rule | Description | Author | Strings |
|---|---|---|---|---|
| Windows_Trojan_Metasploit_7bc0f998 | Identifies the API address lookup function leverage by metasploit shellcode | unknown |
| |
| Windows_Trojan_Metasploit_c9773203 | Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families. | unknown |
| |
| Windows_Trojan_CobaltStrike_f0b627fc | Rule for beacon reflective loader | unknown |
| |
| Windows_Trojan_Metasploit_7bc0f998 | Identifies the API address lookup function leverage by metasploit shellcode | unknown |
| |
| Windows_Trojan_Metasploit_c9773203 | Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families. | unknown |
| |
| Click to see the 1 entries | ||||
| Source | Rule | Description | Author | Strings |
|---|---|---|---|---|
| JoeSecurity_CobaltStrike_4 | Yara detected CobaltStrike | Joe Security | ||
| JoeSecurity_CobaltStrike_4 | Yara detected CobaltStrike | Joe Security |
⊘No Sigma rule has matched
⊘No Suricata rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |   |
|---|
| Source: | Avira: | ||
| Source: | Malware Configuration Extractor: | ||
| Source: | ReversingLabs: | |||
| Source: | Virustotal: | Perma Link | ||
| Source: | Integrated Neural Analysis Model: | ||
| Source: | Joe Sandbox ML: | ||
| Source: | Code function: | 1_2_00D6DF82 | |
| Source: | Static PE information: | ||
| Source: | Code function: | 1_2_00D64225 | |
| Source: | Code function: | 1_2_00D6970E | |
Networking | |
|---|
| Source: | URLs: | ||
| Source: | ASN Name: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | Code function: | 1_2_00D61C3F | |
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | HTTP traffic detected: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
System Summary | |
|---|
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Code function: | 1_2_00D6C3DF | |
| Source: | Code function: | 1_2_00D6C320 | |
| Source: | Code function: | 1_2_00D6C669 | |
| Source: | Code function: | 1_2_00D63A7E | |
| Source: | Code function: | 1_2_00D840D1 | |
| Source: | Code function: | 1_2_00D848FD | |
| Source: | Code function: | 1_2_00D83828 | |
| Source: | Code function: | 1_2_00D749E9 | |
| Source: | Code function: | 1_2_00D87190 | |
| Source: | Code function: | 1_2_00D86945 | |
| Source: | Code function: | 1_2_00D86BC0 | |
| Source: | Code function: | 1_2_00D86320 | |
| Source: | Code function: | 1_2_00D844DD | |
| Source: | Code function: | 1_2_00D83CFD | |
| Source: | Code function: | 1_2_00D79DDB | |
| Source: | Code function: | 1_2_03E10000 | |
| Source: | Code function: | ||
| Source: | Static PE information: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Classification label: | ||
| Source: | Code function: | 1_2_00D631CB | |
| Source: | Code function: | 1_2_00D694E3 | |
| Source: | Static PE information: | ||
| Source: | Key opened: | Jump to behavior | ||
| Source: | ReversingLabs: | ||
| Source: | Virustotal: | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Section loaded: | Jump to behavior | ||
| Source: | Key value queried: | Jump to behavior | ||
| Source: | Code function: | 1_2_00D611D8 | |
| Source: | Code function: | 1_3_008114D5 | |
| Source: | Code function: | 1_3_008112F1 | |
| Source: | Code function: | 1_3_008139FD | |
| Source: | Code function: | 1_3_00814248 | |
| Source: | Code function: | 1_3_00810372 | |
| Source: | Code function: | 1_2_00D76ABD | |
| Source: | Code function: | 1_2_00D7A3FC | |
| Source: | Code function: | 1_2_00D775D7 | |
| Source: | Window / User API: | Jump to behavior | ||
| Source: | Window / User API: | Jump to behavior | ||
| Source: | Decision node followed by non-executed suspicious API: | graph_1-21389 | ||
| Source: | Evasive API call chain: | graph_1-21162 | ||
| Source: | Evasive API call chain: | graph_1-20847 | ||
| Source: | API coverage: | ||
| Source: | Thread sleep count: | Jump to behavior | ||
| Source: | Thread sleep time: | Jump to behavior | ||
| Source: | Thread sleep count: | Jump to behavior | ||
| Source: | Thread sleep time: | Jump to behavior | ||
| Source: | Thread injection, dropped files, key value created, disk infection and DNS query: | ||
| Source: | Last function: | ||
| Source: | Last function: | ||
| Source: | Code function: | 1_2_00D64225 | |
| Source: | Code function: | 1_2_00D6970E | |
| Source: | Binary or memory string: | ||
| Source: | API call chain: | graph_1-21022 | ||
Anti Debugging | |
|---|
| Source: | Process Stats: | ||
| Source: | Code function: | 1_2_00D7762B | |
| Source: | Code function: | 1_2_00D88375 | |
| Source: | Code function: | 1_2_00D611D8 | |
| Source: | Code function: | 1_3_0081ACAE | |
| Source: | Code function: | 1_3_00819FDE | |
| Source: | Code function: | 1_2_00D681C2 | |
| Source: | Thread injection, dropped files, key value created, disk infection and DNS query: | ||
| Source: | Code function: | 1_2_0040116C | |
| Source: | Code function: | 1_2_00401A5C | |
| Source: | Code function: | 1_2_00401A60 | |
| Source: | Code function: | 1_2_00401160 | |
| Source: | Code function: | 1_2_004013C1 | |
| Source: | Code function: | 1_2_004011A3 | |
| Source: | Code function: | 1_2_00D81950 | |
| Source: | Code function: | 1_2_00D7F331 | |
| Source: | Code function: | 1_2_00D7B4B2 | |
| Source: | Code function: | 1_2_00D6D272 | |
| Source: | Code function: | 1_2_00D6D442 | |
| Source: | Code function: | 1_2_00D84EF0 | |
| Source: | Code function: | 1_2_0040161C | |
| Source: | Code function: | 1_2_004019A0 | |
| Source: | Code function: | 1_2_00D66F09 | |
| Source: | Code function: | 1_2_00D66F09 | |
| Source: | Key value queried: | Jump to behavior | ||
Remote Access Functionality | |
|---|
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | Code function: | 1_2_00D675B7 | |
| Source: | Code function: | 1_2_00D6DDB3 | |
| Source: | Code function: | 1_2_00D67699 | |
| Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Gather Victim Identity Information | Acquire Infrastructure | 2 Valid Accounts | 2 Native API | 2 Valid Accounts | 2 Valid Accounts | 2 Valid Accounts | OS Credential Dumping | 1 System Time Discovery | Remote Services | 1 Archive Collected Data | 2 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
| Credentials | Domains | Default Accounts | Scheduled Task/Job | 1 DLL Side-Loading | 21 Access Token Manipulation | 111 Virtualization/Sandbox Evasion | LSASS Memory | 121 Security Software Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Ingress Tool Transfer | Exfiltration Over Bluetooth | Network Denial of Service |
| Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | 1 Process Injection | 21 Access Token Manipulation | Security Account Manager | 111 Virtualization/Sandbox Evasion | SMB/Windows Admin Shares | Data from Network Shared Drive | 1 Non-Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
| Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | 1 DLL Side-Loading | 1 Process Injection | NTDS | 1 Process Discovery | Distributed Component Object Model | Input Capture | 111 Application Layer Protocol | Traffic Duplication | Data Destruction |
| Gather Victim Network Information | Server | Cloud Accounts | Launchd | Network Logon Script | Network Logon Script | 1 Deobfuscate/Decode Files or Information | LSA Secrets | 1 Application Window Discovery | SSH | Keylogging | Fallback Channels | Scheduled Transfer | Data Encrypted for Impact |
| Domain Properties | Botnet | Replication Through Removable Media | Scheduled Task | RC Scripts | RC Scripts | 2 Obfuscated Files or Information | Cached Domain Credentials | 1 Account Discovery | VNC | GUI Input Capture | Multiband Communication | Data Transfer Size Limits | Service Stop |
| DNS | Web Services | External Remote Services | Systemd Timers | Startup Items | Startup Items | 1 DLL Side-Loading | DCSync | 1 System Owner/User Discovery | Windows Remote Management | Web Portal Capture | Commonly Used Port | Exfiltration Over C2 Channel | Inhibit System Recovery |
| Network Trust Dependencies | Serverless | Drive-by Compromise | Container Orchestration Job | Scheduled Task/Job | Scheduled Task/Job | Indicator Removal from Tools | Proc Filesystem | 1 File and Directory Discovery | Cloud Services | Credential API Hooking | Application Layer Protocol | Exfiltration Over Alternative Protocol | Defacement |
| Network Topology | Malvertising | Exploit Public-Facing Application | Command and Scripting Interpreter | At | At | HTML Smuggling | /etc/passwd and /etc/shadow | 14 System Information Discovery | Direct Cloud VM Connections | Data Staged | Web Protocols | Exfiltration Over Symmetric Encrypted Non-C2 Protocol | Internal Defacement |
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
InternetThis section contains all screenshots as thumbnails, including those not shown in the slideshow.
| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 95% | ReversingLabs | Win32.Trojan.CobaltStrike | ||
| 79% | Virustotal | Browse | ||
| 100% | Avira | HEUR/AGEN.1344233 | ||
| 100% | Joe Sandbox ML |
⊘No Antivirus matches
⊘No Antivirus matches
⊘No Antivirus matches
| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe | ||
| 0% | Avira URL Cloud | safe |
⊘No contacted domains info
| Name | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|
| true |
| unknown | |
| true |
| unknown |
| Name | Source | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|---|
| false |
| unknown | ||
| false |
| unknown | ||
| false |
| unknown | ||
| false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
| IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
|---|---|---|---|---|---|---|
| 8.148.6.140 | unknown | Singapore | 37963 | CNNIC-ALIBABA-CN-NET-APHangzhouAlibabaAdvertisingCoLtd | true |
| Joe Sandbox version: | 42.0.0 Malachite |
| Analysis ID: | 1587368 |
| Start date and time: | 2025-01-10 09:25:12 +01:00 |
| Joe Sandbox product: | CloudBasic |
| Overall analysis duration: | 0h 6m 35s |
| Hypervisor based Inspection enabled: | false |
| Report type: | full |
| Cookbook file name: | default.jbs |
| Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
| Number of analysed new started processes analysed: | 7 |
| Number of new started drivers analysed: | 0 |
| Number of existing processes analysed: | 0 |
| Number of existing drivers analysed: | 0 |
| Number of injected processes analysed: | 0 |
| Technologies: |
|
| Analysis Mode: | default |
| Analysis stop reason: | Timeout |
| Sample name: | beacon_x86.exe |
| Detection: | MAL |
| Classification: | mal96.troj.evad.winEXE@1/0@0/1 |
| EGA Information: |
|
| HCA Information: |
|
| Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, WMIADAP.exe, SIHClient.exe, conhost.exe
- Excluded IPs from analysis (whitelisted): 52.149.20.212, 23.206.229.226
- Excluded domains from analysis (whitelisted): www.bing.com, ocsp.digicert.com, slscr.update.microsoft.com, fe3cr.delivery.mp.microsoft.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtDeviceIoControlFile calls found.
- Report size getting too big, too many NtQueryValueKey calls found.
| Time | Type | Description |
|---|---|---|
| 03:26:10 | API Interceptor |
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| 8.148.6.140 | Get hash | malicious | CobaltStrike | Browse |
|
⊘No context
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| CNNIC-ALIBABA-CN-NET-APHangzhouAlibabaAdvertisingCoLtd | Get hash | malicious | CobaltStrike | Browse |
| |
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | CobaltStrike, Metasploit | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | CobaltStrike, Metasploit | Browse |
|
⊘No context
⊘No context
⊘No created / dropped files found
| File type: | |
| Entropy (8bit): | 6.777438348295706 |
| TrID: |
|
| File name: | beacon_x86.exe |
| File size: | 324'096 bytes |
| MD5: | bffe5dbe4d4ececc6652360ce37b8075 |
| SHA1: | 9e3ccfe33a88fd70ba6b5ac8f72b3bc0c760e798 |
| SHA256: | c86426eeb24a042903b302c21513defb1e61535fc008b7c9e847113ddb798666 |
| SHA512: | a57a54cdc9411288b0058d90bd942c8954c40e184be11e8d4296355466f466bba111d845a3b906835f3755e204e7d7fe0977b9da989ea2050040654fa66019d3 |
| SSDEEP: | 6144:E1Qdv/pgihi5cFPr8OstxsUvuTHNPbNKuXjlM6SKj:Wi/pgOYXOtpHNPbNlXjqe |
| TLSH: | 0864CF6FA432C8E7C8FD71F01AC763AFA5AE127C5885CA7AD74EF094F421B045E84592 |
| File Content Preview: | MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L......................".....................0....@..........................@................ ............................ |
 | |
| Icon Hash: | 00928e8e8686b000 |
| Entrypoint: | 0x4014a0 |
| Entrypoint Section: | .text |
| Digitally signed: | false |
| Imagebase: | 0x400000 |
| Subsystem: | windows gui |
| Image File Characteristics: | RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE, DEBUG_STRIPPED |
| DLL Characteristics: | |
| Time Stamp: | 0x0 [Thu Jan 1 00:00:00 1970 UTC] |
| TLS Callbacks: | 0x401b40, 0x401af0 |
| CLR (.Net) Version: | |
| OS Version Major: | 4 |
| OS Version Minor: | 0 |
| File Version Major: | 4 |
| File Version Minor: | 0 |
| Subsystem Version Major: | 4 |
| Subsystem Version Minor: | 0 |
| Import Hash: | f6243a15fa8eee8ee96b5e1144d461f6 |
| Instruction |
|---|
| sub esp, 0Ch |
| mov dword ptr [00450394h], 00000001h |
| call 00007F2550AFA963h |
| add esp, 0Ch |
| jmp 00007F2550AFA11Bh |
| lea esi, dword ptr [esi+00000000h] |
| sub esp, 0Ch |
| mov dword ptr [00450394h], 00000000h |
| call 00007F2550AFA943h |
| add esp, 0Ch |
| jmp 00007F2550AFA0FBh |
| lea esi, dword ptr [esi+00000000h] |
| sub esp, 1Ch |
| mov eax, dword ptr [esp+20h] |
| mov dword ptr [esp], eax |
| call 00007F2550AFB8EAh |
| test eax, eax |
| sete al |
| add esp, 1Ch |
| movzx eax, al |
| neg eax |
| ret |
| nop |
| nop |
| nop |
| push ebp |
| mov ebp, esp |
| sub esp, 18h |
| mov dword ptr [esp], 00401520h |
| call 00007F2550AFA443h |
| leave |
| ret |
| lea esi, dword ptr [esi+00000000h] |
| lea esi, dword ptr [esi+00h] |
| nop |
| ret |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| nop |
| push ebp |
| mov ebp, esp |
| mov eax, dword ptr [ebp+08h] |
| pop ebp |
| jmp eax |
| push ebp |
| mov edx, dword ptr [0040302Ch] |
| mov ebp, esp |
| mov eax, dword ptr [ebp+08h] |
| test edx, edx |
| jle 00007F2550AFA493h |
| cmp dword ptr [00403030h], 00000000h |
| jle 00007F2550AFA48Ah |
| mov ecx, dword ptr [00451148h] |
| mov dword ptr [eax+edx], ecx |
| mov ecx, dword ptr [0045114Ch] |
| mov edx, dword ptr [00403030h] |
| Name | Virtual Address | Virtual Size | Is in Section |
|---|---|---|---|
| IMAGE_DIRECTORY_ENTRY_EXPORT | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_IMPORT | 0x51000 | 0x644 | .idata |
| IMAGE_DIRECTORY_ENTRY_RESOURCE | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_EXCEPTION | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_SECURITY | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_BASERELOC | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_DEBUG | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_COPYRIGHT | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_GLOBALPTR | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_TLS | 0x4f030 | 0x18 | .rdata |
| IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_IAT | 0x5111c | 0xe0 | .idata |
| IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR | 0x0 | 0x0 | |
| IMAGE_DIRECTORY_ENTRY_RESERVED | 0x0 | 0x0 |
| Name | Virtual Address | Virtual Size | Raw Size | MD5 | Xored PE | ZLIB Complexity | File Type | Entropy | Characteristics |
|---|---|---|---|---|---|---|---|---|---|
| .text | 0x1000 | 0x1a44 | 0x1c00 | 78084e5ca85835392a463f62abd5746c | False | 0.5334821428571429 | data | 5.700340700341032 | IMAGE_SCN_CNT_CODE, IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_1BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_8BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_256BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_2048BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ |
| .data | 0x3000 | 0x4bc6c | 0x4be00 | d09fab49fa7c820bc22a7bf525cb270c | False | 0.5702063169275123 | dBase III DBT, version number 0, next free block index 10, 1st item "\340\334\253\212\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+#\346\334\017\220\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334+\223\344\334\037\313\210\227E\277\344\334\376\002\346\334+\203\344\334+\001\346\334+\227\344\334+\223\344\334+\223\344\334+\223\344\334\013\223\344\274\037" | 6.802458719813997 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_2BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_8BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_512BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_2048BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
| .rdata | 0x4f000 | 0x634 | 0x800 | 667441c840a2c3ea7e1291acd47bf4c5 | False | 0.2275390625 | data | 4.495993508967327 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_1BYTES, IMAGE_SCN_ALIGN_2BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_256BYTES, IMAGE_SCN_ALIGN_512BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_READ |
| .bss | 0x50000 | 0x428 | 0x0 | d41d8cd98f00b204e9800998ecf8427e | False | 0 | empty | 0.0 | IMAGE_SCN_CNT_UNINITIALIZED_DATA, IMAGE_SCN_ALIGN_2BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_8BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_512BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_2048BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
| .idata | 0x51000 | 0x644 | 0x800 | 7d72908e4c68f22d444c4e664d88dda3 | False | 0.3544921875 | data | 4.2935353496828945 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_1BYTES, IMAGE_SCN_ALIGN_2BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_256BYTES, IMAGE_SCN_ALIGN_512BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
| .CRT | 0x52000 | 0x34 | 0x200 | a09a5f5fb4593e99cd0076e5f2fcec2e | False | 0.072265625 | Matlab v4 mat-file (little endian) \200\031@, numeric, rows 4198688, columns 0 | 0.2711142780062829 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_1BYTES, IMAGE_SCN_ALIGN_2BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_256BYTES, IMAGE_SCN_ALIGN_512BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
| .tls | 0x53000 | 0x8 | 0x200 | bf619eac0cdf3f68d496ea9344137e8b | False | 0.02734375 | data | 0.0 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_1BYTES, IMAGE_SCN_ALIGN_2BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_256BYTES, IMAGE_SCN_ALIGN_512BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
| DLL | Import |
|---|---|
| KERNEL32.dll | CloseHandle, ConnectNamedPipe, CreateFileA, CreateNamedPipeA, CreateThread, DeleteCriticalSection, EnterCriticalSection, GetCurrentProcess, GetCurrentProcessId, GetCurrentThreadId, GetLastError, GetModuleHandleA, GetProcAddress, GetStartupInfoA, GetSystemTimeAsFileTime, GetTickCount, InitializeCriticalSection, LeaveCriticalSection, QueryPerformanceCounter, ReadFile, SetUnhandledExceptionFilter, Sleep, TerminateProcess, TlsGetValue, UnhandledExceptionFilter, VirtualAlloc, VirtualProtect, VirtualQuery, WriteFile |
| msvcrt.dll | __getmainargs, __initenv, __lconv_init, __p__acmdln, __p__fmode, __set_app_type, __setusermatherr, _amsg_exit, _cexit, _initterm, _iob, _onexit, abort, calloc, exit, fprintf, free, fwrite, malloc, memcpy, signal, sprintf, strlen, strncmp, vfprintf |
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Jan 10, 2025 09:26:12.418658972 CET | 49706 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:12.423535109 CET | 80 | 49706 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:12.423621893 CET | 49706 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:12.423816919 CET | 49706 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:12.428631067 CET | 80 | 49706 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:13.407344103 CET | 80 | 49706 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:13.407361984 CET | 80 | 49706 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:13.407464981 CET | 49706 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:13.410254002 CET | 49706 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:13.415031910 CET | 80 | 49706 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:13.523662090 CET | 49707 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:13.528491020 CET | 80 | 49707 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:13.528577089 CET | 49707 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:13.528750896 CET | 49707 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:13.534245014 CET | 80 | 49707 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:17.519165039 CET | 80 | 49707 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:17.519221067 CET | 80 | 49707 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:17.519237995 CET | 49707 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:17.519279957 CET | 49707 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:17.519490004 CET | 49707 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:17.524352074 CET | 80 | 49707 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:17.634732008 CET | 49708 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:17.639842987 CET | 80 | 49708 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:17.639990091 CET | 49708 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:17.644833088 CET | 49708 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:17.649698019 CET | 80 | 49708 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:18.610219955 CET | 80 | 49708 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:18.610313892 CET | 49708 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:18.610388041 CET | 80 | 49708 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:18.610440969 CET | 49708 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:18.610508919 CET | 49708 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:18.615298033 CET | 80 | 49708 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:18.726469994 CET | 49709 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:18.731450081 CET | 80 | 49709 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:18.731591940 CET | 49709 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:18.731815100 CET | 49709 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:18.736861944 CET | 80 | 49709 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:19.700913906 CET | 80 | 49709 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:19.700932980 CET | 80 | 49709 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:19.701016903 CET | 49709 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:19.701184988 CET | 49709 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:19.705955982 CET | 80 | 49709 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:19.804693937 CET | 49710 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:19.809761047 CET | 80 | 49710 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:19.809859991 CET | 49710 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:19.809997082 CET | 49710 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:19.814779043 CET | 80 | 49710 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:20.779411077 CET | 80 | 49710 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:20.779479980 CET | 80 | 49710 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:20.779582977 CET | 49710 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:20.782780886 CET | 49710 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:20.787589073 CET | 80 | 49710 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:20.920605898 CET | 49711 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:20.925579071 CET | 80 | 49711 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:20.925666094 CET | 49711 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:20.929698944 CET | 49711 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:20.934518099 CET | 80 | 49711 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:21.920200109 CET | 80 | 49711 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:21.920278072 CET | 49711 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:21.920341015 CET | 80 | 49711 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:21.920471907 CET | 49711 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:22.024076939 CET | 49711 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:22.024674892 CET | 49712 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:22.028981924 CET | 80 | 49711 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:22.029515982 CET | 80 | 49712 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:22.029628992 CET | 49712 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:22.029737949 CET | 49712 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:22.034589052 CET | 80 | 49712 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:23.015799999 CET | 80 | 49712 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:23.015887022 CET | 80 | 49712 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:23.015978098 CET | 49712 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:23.015978098 CET | 49712 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:23.017198086 CET | 49712 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:23.021934986 CET | 80 | 49712 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:23.143764019 CET | 49713 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:23.148760080 CET | 80 | 49713 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:23.148838043 CET | 49713 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:23.149082899 CET | 49713 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:23.153882027 CET | 80 | 49713 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:27.228595018 CET | 49713 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:27.558378935 CET | 49717 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:27.563416004 CET | 80 | 49717 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:27.563492060 CET | 49717 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:27.563920975 CET | 49717 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:27.568770885 CET | 80 | 49717 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:31.569339991 CET | 49717 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:31.679464102 CET | 49718 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:31.684377909 CET | 80 | 49718 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:31.684500933 CET | 49718 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:31.684649944 CET | 49718 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:31.689371109 CET | 80 | 49718 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:32.670253038 CET | 80 | 49718 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:32.670511007 CET | 49718 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:32.670557976 CET | 80 | 49718 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:32.670627117 CET | 49718 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:32.672775984 CET | 49718 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:32.677615881 CET | 80 | 49718 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:32.789196968 CET | 49719 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:32.794909000 CET | 80 | 49719 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:32.794995070 CET | 49719 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:32.795144081 CET | 49719 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:32.799979925 CET | 80 | 49719 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:35.131047964 CET | 80 | 49719 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:35.131100893 CET | 49719 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:35.131165028 CET | 80 | 49719 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:35.131206989 CET | 49719 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:35.131247997 CET | 49719 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:35.136202097 CET | 80 | 49719 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:35.242135048 CET | 49720 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:35.246954918 CET | 80 | 49720 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:35.247090101 CET | 49720 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:35.247235060 CET | 49720 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:35.252017975 CET | 80 | 49720 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:36.224260092 CET | 80 | 49720 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:36.224308968 CET | 80 | 49720 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:36.224345922 CET | 49720 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:36.224345922 CET | 49720 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:36.233124018 CET | 49720 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:36.238017082 CET | 80 | 49720 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:36.335640907 CET | 49721 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:36.340548992 CET | 80 | 49721 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:36.340621948 CET | 49721 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:36.340878010 CET | 49721 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:36.345746040 CET | 80 | 49721 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:37.354211092 CET | 80 | 49721 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:37.354264021 CET | 80 | 49721 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:37.354374886 CET | 49721 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:37.354512930 CET | 49721 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:37.354512930 CET | 49721 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:37.359368086 CET | 80 | 49721 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:37.460711002 CET | 49722 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:37.465780020 CET | 80 | 49722 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:37.465923071 CET | 49722 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:37.466064930 CET | 49722 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:37.470901966 CET | 80 | 49722 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:38.461850882 CET | 80 | 49722 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:38.461914062 CET | 80 | 49722 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:38.461949110 CET | 49722 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:38.461949110 CET | 49722 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:38.462085962 CET | 49722 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:38.466830015 CET | 80 | 49722 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:38.570588112 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:38.575478077 CET | 80 | 49723 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:38.575684071 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:38.575706959 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:38.580506086 CET | 80 | 49723 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:39.527338028 CET | 80 | 49723 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:39.527439117 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.527494907 CET | 80 | 49723 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:39.527542114 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.527616978 CET | 80 | 49723 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:39.527721882 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.632278919 CET | 49723 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.632649899 CET | 49724 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.637180090 CET | 80 | 49723 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:39.637578011 CET | 80 | 49724 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:39.637669086 CET | 49724 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.637844086 CET | 49724 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:39.642640114 CET | 80 | 49724 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:40.626804113 CET | 80 | 49724 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:40.626823902 CET | 80 | 49724 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:40.626912117 CET | 49724 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:40.646528006 CET | 49724 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:40.651467085 CET | 80 | 49724 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:41.004077911 CET | 49725 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:41.008940935 CET | 80 | 49725 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:41.009023905 CET | 49725 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:41.027055025 CET | 49725 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:41.031841040 CET | 80 | 49725 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:41.966902971 CET | 80 | 49725 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:41.966990948 CET | 49725 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:41.967091084 CET | 80 | 49725 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:41.967138052 CET | 49725 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:42.069896936 CET | 49725 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:42.070214987 CET | 49726 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:42.074682951 CET | 80 | 49725 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:42.075073004 CET | 80 | 49726 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:42.075148106 CET | 49726 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:42.075259924 CET | 49726 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:42.080028057 CET | 80 | 49726 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:43.667608023 CET | 80 | 49726 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:43.667678118 CET | 49726 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:43.667768955 CET | 80 | 49726 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:43.667813063 CET | 49726 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:43.667984962 CET | 49726 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:43.672708988 CET | 80 | 49726 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:43.780133963 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:43.785871983 CET | 80 | 49727 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:43.785985947 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:43.794128895 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:43.798940897 CET | 80 | 49727 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:44.745846987 CET | 80 | 49727 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:44.745971918 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.746009111 CET | 80 | 49727 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:44.746069908 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.746087074 CET | 80 | 49727 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:44.746133089 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.851210117 CET | 49727 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.851561069 CET | 49728 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.857376099 CET | 80 | 49727 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:44.857389927 CET | 80 | 49728 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:44.857500076 CET | 49728 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.859091043 CET | 49728 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:44.864564896 CET | 80 | 49728 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:48.820684910 CET | 80 | 49728 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:48.820759058 CET | 80 | 49728 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:48.820770979 CET | 49728 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:48.820804119 CET | 49728 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:48.820933104 CET | 49728 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:48.825757980 CET | 80 | 49728 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:48.929626942 CET | 49729 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:48.934608936 CET | 80 | 49729 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:48.934758902 CET | 49729 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:48.935045004 CET | 49729 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:48.939909935 CET | 80 | 49729 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:52.894654989 CET | 80 | 49729 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:52.894757986 CET | 49729 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:52.894866943 CET | 80 | 49729 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:52.894913912 CET | 49729 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:53.009486914 CET | 49729 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:53.009860039 CET | 49730 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:53.014406919 CET | 80 | 49729 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:53.014709949 CET | 80 | 49730 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:53.014815092 CET | 49730 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:53.014978886 CET | 49730 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:53.019733906 CET | 80 | 49730 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:54.003207922 CET | 80 | 49730 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:54.003247023 CET | 80 | 49730 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:54.003360033 CET | 49730 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:54.003645897 CET | 49730 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:54.008435965 CET | 80 | 49730 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:54.137722015 CET | 49731 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:54.142525911 CET | 80 | 49731 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:54.142631054 CET | 49731 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:54.142810106 CET | 49731 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:54.147608995 CET | 80 | 49731 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:58.124161005 CET | 80 | 49731 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:58.124206066 CET | 80 | 49731 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:58.124403000 CET | 49731 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:58.124452114 CET | 49731 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:58.129230022 CET | 80 | 49731 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:58.242444038 CET | 49732 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:58.247375965 CET | 80 | 49732 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:58.247489929 CET | 49732 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:58.247679949 CET | 49732 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:58.252496004 CET | 80 | 49732 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:59.213568926 CET | 80 | 49732 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:59.213661909 CET | 80 | 49732 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:59.213814974 CET | 49732 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:59.213814974 CET | 49732 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:59.213814974 CET | 49732 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:59.218687057 CET | 80 | 49732 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:59.320255041 CET | 49733 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:59.325206041 CET | 80 | 49733 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:26:59.325344086 CET | 49733 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:59.325453043 CET | 49733 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:26:59.330261946 CET | 80 | 49733 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:03.384663105 CET | 49733 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:03.510215998 CET | 49735 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:03.515168905 CET | 80 | 49735 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:03.519231081 CET | 49735 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:03.525893927 CET | 49735 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:03.530678034 CET | 80 | 49735 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:04.398216009 CET | 80 | 49735 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:04.398322105 CET | 49735 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:04.398942947 CET | 49735 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:04.405399084 CET | 80 | 49735 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:04.507567883 CET | 49736 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:04.513171911 CET | 80 | 49736 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:04.513264894 CET | 49736 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:04.513386965 CET | 49736 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:04.518134117 CET | 80 | 49736 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:05.492219925 CET | 80 | 49736 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:05.492330074 CET | 80 | 49736 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:05.492547989 CET | 49736 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:05.494108915 CET | 49736 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:05.498912096 CET | 80 | 49736 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:05.601315975 CET | 49737 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:05.606288910 CET | 80 | 49737 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:05.606363058 CET | 49737 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:05.606447935 CET | 49737 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:05.611254930 CET | 80 | 49737 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:06.476550102 CET | 80 | 49737 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:06.476696968 CET | 49737 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:06.476849079 CET | 49737 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:06.482245922 CET | 80 | 49737 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:06.585932970 CET | 49738 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:06.595827103 CET | 80 | 49738 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:06.596009016 CET | 49738 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:06.596239090 CET | 49738 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:06.603202105 CET | 80 | 49738 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:07.426661968 CET | 80 | 49738 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:07.426748037 CET | 49738 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:07.426970005 CET | 49738 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:07.431873083 CET | 80 | 49738 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:07.538894892 CET | 49739 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:07.544178963 CET | 80 | 49739 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:07.544320107 CET | 49739 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:07.544533968 CET | 49739 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:07.550124884 CET | 80 | 49739 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:08.552177906 CET | 80 | 49739 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:08.552207947 CET | 80 | 49739 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:08.552247047 CET | 80 | 49739 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:08.552316904 CET | 49739 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:08.552407980 CET | 49739 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:08.552483082 CET | 49739 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:08.557292938 CET | 80 | 49739 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:08.664247990 CET | 49740 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:08.669245005 CET | 80 | 49740 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:08.669367075 CET | 49740 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:08.669513941 CET | 49740 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:08.790683985 CET | 80 | 49740 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:09.638202906 CET | 80 | 49740 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:09.638339043 CET | 49740 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:09.638447046 CET | 49740 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:09.643769026 CET | 80 | 49740 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:09.741955996 CET | 49741 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:09.746820927 CET | 80 | 49741 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:09.746917963 CET | 49741 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:09.747112036 CET | 49741 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:09.751868963 CET | 80 | 49741 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:13.759341955 CET | 49741 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:13.960776091 CET | 49742 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:13.965742111 CET | 80 | 49742 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:13.967148066 CET | 49742 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:13.983182907 CET | 49742 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:13.987992048 CET | 80 | 49742 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:14.819374084 CET | 80 | 49742 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:14.819499969 CET | 49742 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:14.819674015 CET | 49742 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:14.824517965 CET | 80 | 49742 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:14.930499077 CET | 49743 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:14.935528040 CET | 80 | 49743 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:14.935754061 CET | 49743 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:14.935813904 CET | 49743 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:14.940604925 CET | 80 | 49743 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:18.944390059 CET | 49743 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:19.054789066 CET | 49744 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:19.059695005 CET | 80 | 49744 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:19.059828043 CET | 49744 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:19.059979916 CET | 49744 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:19.064759016 CET | 80 | 49744 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:19.948484898 CET | 80 | 49744 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:19.948600054 CET | 49744 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:19.948657990 CET | 49744 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:19.953453064 CET | 80 | 49744 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:20.054335117 CET | 49745 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:20.060343981 CET | 80 | 49745 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:20.060450077 CET | 49745 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:20.060554028 CET | 49745 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:20.066394091 CET | 80 | 49745 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:20.929932117 CET | 80 | 49745 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:20.930083036 CET | 49745 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:20.930283070 CET | 49745 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:20.935053110 CET | 80 | 49745 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:21.038749933 CET | 49746 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:21.232525110 CET | 80 | 49746 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:21.232657909 CET | 49746 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:21.232831955 CET | 49746 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:21.237593889 CET | 80 | 49746 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:25.113642931 CET | 80 | 49746 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:25.113800049 CET | 49746 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:25.113903999 CET | 49746 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:25.118722916 CET | 80 | 49746 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:25.231292009 CET | 49747 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:25.236193895 CET | 80 | 49747 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:25.236310959 CET | 49747 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:25.236464024 CET | 49747 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:25.241261005 CET | 80 | 49747 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:26.087512016 CET | 80 | 49747 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:26.087631941 CET | 49747 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:26.087678909 CET | 49747 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:26.092595100 CET | 80 | 49747 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:26.195383072 CET | 49748 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:26.200340986 CET | 80 | 49748 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:26.200464010 CET | 49748 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:26.200710058 CET | 49748 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:26.205530882 CET | 80 | 49748 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:27.779783010 CET | 80 | 49748 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:27.779861927 CET | 80 | 49748 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:27.779937029 CET | 49748 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:27.779979944 CET | 49748 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:27.780148029 CET | 49748 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:27.784914017 CET | 80 | 49748 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:27.882888079 CET | 49749 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:27.887936115 CET | 80 | 49749 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:27.888025999 CET | 49749 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:27.888179064 CET | 49749 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:27.893038034 CET | 80 | 49749 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:28.878134012 CET | 80 | 49749 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:28.878221989 CET | 80 | 49749 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:28.878252983 CET | 49749 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:28.878279924 CET | 49749 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:28.878449917 CET | 49749 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:28.883291006 CET | 80 | 49749 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:28.992037058 CET | 49750 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:28.996927023 CET | 80 | 49750 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:28.997987986 CET | 49750 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:28.997987986 CET | 49750 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:29.003304958 CET | 80 | 49750 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:29.842031956 CET | 80 | 49750 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:29.842104912 CET | 49750 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:29.842178106 CET | 49750 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:29.846925974 CET | 80 | 49750 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:29.945013046 CET | 49751 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:29.950053930 CET | 80 | 49751 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:29.950185061 CET | 49751 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:29.950391054 CET | 49751 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:29.955148935 CET | 80 | 49751 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:30.806492090 CET | 80 | 49751 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:30.806565046 CET | 49751 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:30.815232992 CET | 49751 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:30.820056915 CET | 80 | 49751 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:30.931346893 CET | 49752 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:30.936254025 CET | 80 | 49752 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:30.936355114 CET | 49752 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:30.936470032 CET | 49752 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:30.941220045 CET | 80 | 49752 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:34.924786091 CET | 80 | 49752 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:34.924846888 CET | 49752 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:34.924989939 CET | 80 | 49752 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:34.925041914 CET | 49752 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:35.040971041 CET | 49752 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:35.041249037 CET | 49753 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:35.045754910 CET | 80 | 49752 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:35.046030045 CET | 80 | 49753 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:35.046098948 CET | 49753 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:35.046262980 CET | 49753 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:35.051047087 CET | 80 | 49753 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:38.920195103 CET | 80 | 49753 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:38.920269966 CET | 49753 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:38.924997091 CET | 49753 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:38.929806948 CET | 80 | 49753 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:39.054723024 CET | 49754 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:39.059546947 CET | 80 | 49754 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:39.059613943 CET | 49754 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:39.060409069 CET | 49754 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:39.065154076 CET | 80 | 49754 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:39.977606058 CET | 80 | 49754 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:39.977668047 CET | 49754 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:39.977765083 CET | 49754 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:39.982516050 CET | 80 | 49754 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:40.087924004 CET | 49755 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:40.092791080 CET | 80 | 49755 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:40.092911005 CET | 49755 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:40.093089104 CET | 49755 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:40.098252058 CET | 80 | 49755 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:44.141128063 CET | 49755 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:44.265811920 CET | 49756 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:44.270770073 CET | 80 | 49756 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:44.270844936 CET | 49756 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:44.271183014 CET | 49756 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:44.276021004 CET | 80 | 49756 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:45.138668060 CET | 80 | 49756 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:45.138740063 CET | 49756 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:45.138806105 CET | 49756 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:45.146426916 CET | 80 | 49756 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:45.245218039 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:45.250144958 CET | 80 | 49757 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:45.253863096 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:45.254055977 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:45.258889914 CET | 80 | 49757 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:49.239269972 CET | 80 | 49757 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:49.239497900 CET | 80 | 49757 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:49.239502907 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.239619017 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.239888906 CET | 80 | 49757 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:49.240228891 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.390765905 CET | 49757 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.391252041 CET | 49758 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.395663977 CET | 80 | 49757 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:49.396239042 CET | 80 | 49758 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:49.396404028 CET | 49758 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.398039103 CET | 49758 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:49.403338909 CET | 80 | 49758 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:50.366084099 CET | 80 | 49758 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:50.366163969 CET | 80 | 49758 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:50.366228104 CET | 80 | 49758 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:50.366314888 CET | 49758 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:50.366314888 CET | 49758 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:50.366611958 CET | 49758 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:50.371485949 CET | 80 | 49758 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:50.483056068 CET | 49759 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:50.487951994 CET | 80 | 49759 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:50.491117001 CET | 49759 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:50.495047092 CET | 49759 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:50.499937057 CET | 80 | 49759 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:51.363193035 CET | 80 | 49759 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:51.363270044 CET | 49759 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:51.363534927 CET | 49759 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:51.368283987 CET | 80 | 49759 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:51.531559944 CET | 49760 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:51.536392927 CET | 80 | 49760 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:51.536511898 CET | 49760 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:51.537247896 CET | 49760 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:51.542049885 CET | 80 | 49760 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:53.160536051 CET | 80 | 49760 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:53.160696983 CET | 80 | 49760 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:53.160768986 CET | 49760 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:53.160872936 CET | 49760 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:53.276994944 CET | 49760 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:53.277295113 CET | 49761 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:53.281805992 CET | 80 | 49760 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:53.282749891 CET | 80 | 49761 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:53.282815933 CET | 49761 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:53.283620119 CET | 49761 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:53.288517952 CET | 80 | 49761 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:54.252041101 CET | 80 | 49761 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:54.252070904 CET | 80 | 49761 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:54.252274990 CET | 49761 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:54.252274990 CET | 49761 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:54.257092953 CET | 80 | 49761 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:54.371046066 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:54.375880003 CET | 80 | 49762 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:54.378376961 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:54.378495932 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:54.383256912 CET | 80 | 49762 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:55.357736111 CET | 80 | 49762 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:55.357795000 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.357903957 CET | 80 | 49762 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:55.357959032 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.358038902 CET | 80 | 49762 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:55.358091116 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.372426987 CET | 49762 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.377285957 CET | 80 | 49762 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:55.577739000 CET | 49763 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.582652092 CET | 80 | 49763 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:55.582712889 CET | 49763 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.584167957 CET | 49763 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:55.588977098 CET | 80 | 49763 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:56.448012114 CET | 80 | 49763 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:56.448630095 CET | 49763 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:56.448765993 CET | 49763 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:56.454062939 CET | 80 | 49763 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:56.559211969 CET | 49764 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:56.564071894 CET | 80 | 49764 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:56.564357996 CET | 49764 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:56.564357996 CET | 49764 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:56.569214106 CET | 80 | 49764 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:57.414078951 CET | 80 | 49764 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:57.414220095 CET | 49764 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:57.414220095 CET | 49764 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:57.419122934 CET | 80 | 49764 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:57.525705099 CET | 49765 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:57.530535936 CET | 80 | 49765 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:57.530603886 CET | 49765 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:57.530797958 CET | 49765 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:57.535563946 CET | 80 | 49765 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:58.380248070 CET | 80 | 49765 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:58.383178949 CET | 49765 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:58.387428045 CET | 49765 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:58.392199993 CET | 80 | 49765 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:58.495043993 CET | 49766 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:58.499938965 CET | 80 | 49766 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:27:58.503158092 CET | 49766 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:58.503348112 CET | 49766 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:27:58.508106947 CET | 80 | 49766 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:00.135533094 CET | 80 | 49766 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:00.135601997 CET | 49766 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:00.135694981 CET | 80 | 49766 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:00.135746956 CET | 49766 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:00.142941952 CET | 49766 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:00.147703886 CET | 80 | 49766 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:00.294397116 CET | 49767 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:00.299325943 CET | 80 | 49767 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:00.301789045 CET | 49767 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:00.305979013 CET | 49767 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:00.310795069 CET | 80 | 49767 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:01.135138035 CET | 80 | 49767 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:01.135430098 CET | 49767 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:01.139045000 CET | 49767 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:01.143873930 CET | 80 | 49767 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:01.246675968 CET | 49768 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:01.251579046 CET | 80 | 49768 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:01.251655102 CET | 49768 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:01.252206087 CET | 49768 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:01.256999016 CET | 80 | 49768 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:05.258651018 CET | 49768 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:05.370493889 CET | 49769 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:05.376724958 CET | 80 | 49769 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:05.376811028 CET | 49769 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:05.376934052 CET | 49769 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:05.382988930 CET | 80 | 49769 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:06.357059002 CET | 80 | 49769 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:06.357196093 CET | 80 | 49769 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:06.357269049 CET | 49769 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:06.357373953 CET | 49769 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:06.357373953 CET | 49769 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:06.362183094 CET | 80 | 49769 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:06.463421106 CET | 49770 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:06.468287945 CET | 80 | 49770 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:06.468466997 CET | 49770 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:06.468558073 CET | 49770 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:06.473304033 CET | 80 | 49770 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:07.441239119 CET | 80 | 49770 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:07.441298962 CET | 49770 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:07.441368103 CET | 49770 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:07.448574066 CET | 80 | 49770 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:07.556643009 CET | 49771 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:07.561566114 CET | 80 | 49771 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:07.561662912 CET | 49771 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:07.561825037 CET | 49771 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:07.566557884 CET | 80 | 49771 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:08.570158958 CET | 80 | 49771 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:08.570252895 CET | 80 | 49771 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:08.570364952 CET | 49771 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:08.570588112 CET | 49771 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:08.575378895 CET | 80 | 49771 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:08.691112041 CET | 49772 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:08.696008921 CET | 80 | 49772 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:08.696357012 CET | 49772 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:08.702950954 CET | 49772 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:08.707756996 CET | 80 | 49772 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:10.308865070 CET | 80 | 49772 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:10.308877945 CET | 80 | 49772 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:10.309047937 CET | 49772 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:10.309196949 CET | 49772 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:10.313932896 CET | 80 | 49772 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:10.419464111 CET | 49773 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:10.424297094 CET | 80 | 49773 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:10.424417973 CET | 49773 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:10.424554110 CET | 49773 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:10.429359913 CET | 80 | 49773 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:11.395093918 CET | 80 | 49773 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:11.395219088 CET | 80 | 49773 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:11.395261049 CET | 49773 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:11.395261049 CET | 49773 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:11.395349026 CET | 49773 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:11.400096893 CET | 80 | 49773 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:11.509720087 CET | 49774 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:11.514581919 CET | 80 | 49774 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:11.514786959 CET | 49774 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:11.514879942 CET | 49774 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:11.519705057 CET | 80 | 49774 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:12.393527031 CET | 80 | 49774 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:12.394184113 CET | 49774 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:12.394184113 CET | 49774 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:12.399065971 CET | 80 | 49774 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:12.509279966 CET | 49775 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:12.514128923 CET | 80 | 49775 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:12.517843962 CET | 49775 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:12.517987013 CET | 49775 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:12.522847891 CET | 80 | 49775 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:13.377218962 CET | 80 | 49775 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:13.377314091 CET | 49775 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:13.377456903 CET | 49775 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:13.382257938 CET | 80 | 49775 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:13.525186062 CET | 49776 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:13.530119896 CET | 80 | 49776 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:13.530271053 CET | 49776 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:13.533879995 CET | 49776 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:13.538733959 CET | 80 | 49776 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:15.103058100 CET | 80 | 49776 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:15.103101969 CET | 80 | 49776 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:15.103216887 CET | 49776 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:15.111341000 CET | 49776 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:15.116182089 CET | 80 | 49776 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:15.277169943 CET | 49777 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:15.282109022 CET | 80 | 49777 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:15.282186031 CET | 49777 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:15.282443047 CET | 49777 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:15.287189960 CET | 80 | 49777 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:16.135530949 CET | 80 | 49777 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:16.135607004 CET | 49777 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:16.135679007 CET | 49777 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:16.141787052 CET | 80 | 49777 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:16.243829966 CET | 49778 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:16.250163078 CET | 80 | 49778 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:16.250237942 CET | 49778 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:16.250392914 CET | 49778 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:16.257807016 CET | 80 | 49778 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:17.234460115 CET | 80 | 49778 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:17.234530926 CET | 80 | 49778 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:17.234646082 CET | 49778 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:17.235090017 CET | 49778 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:17.239886999 CET | 80 | 49778 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:17.365710974 CET | 49779 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:17.371249914 CET | 80 | 49779 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:17.371318102 CET | 49779 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:17.374104023 CET | 49779 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:17.380055904 CET | 80 | 49779 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:18.357980967 CET | 80 | 49779 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:18.358108997 CET | 49779 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:18.358127117 CET | 80 | 49779 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:18.358545065 CET | 49779 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:18.376506090 CET | 49779 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:18.381361008 CET | 80 | 49779 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:18.494786024 CET | 49780 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:18.499577045 CET | 80 | 49780 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:18.499675035 CET | 49780 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:18.499998093 CET | 49780 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:18.504731894 CET | 80 | 49780 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:19.381582022 CET | 80 | 49780 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:19.381900072 CET | 49780 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:19.389491081 CET | 49780 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:19.394319057 CET | 80 | 49780 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:19.493524075 CET | 49781 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:19.498477936 CET | 80 | 49781 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:19.498558998 CET | 49781 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:19.498692036 CET | 49781 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:19.503483057 CET | 80 | 49781 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:20.465106010 CET | 80 | 49781 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:20.465153933 CET | 49781 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:20.465231895 CET | 80 | 49781 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:20.465270042 CET | 49781 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:20.465368986 CET | 49781 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:20.470086098 CET | 80 | 49781 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:20.573942900 CET | 49782 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:20.578768015 CET | 80 | 49782 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:20.578839064 CET | 49782 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:20.579029083 CET | 49782 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:20.583755016 CET | 80 | 49782 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:22.157716036 CET | 80 | 49782 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:22.157814026 CET | 80 | 49782 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:22.157970905 CET | 49782 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:22.158041954 CET | 49782 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:22.276433945 CET | 49782 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:22.276654005 CET | 49783 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:22.281251907 CET | 80 | 49782 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:22.281547070 CET | 80 | 49783 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:22.281639099 CET | 49783 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:22.281745911 CET | 49783 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:22.286516905 CET | 80 | 49783 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:26.134670973 CET | 80 | 49783 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:26.135147095 CET | 49783 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:26.135615110 CET | 49783 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:26.142590046 CET | 80 | 49783 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:26.354263067 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:26.359287024 CET | 80 | 49784 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:26.359364986 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:26.359558105 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:26.364357948 CET | 80 | 49784 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:27.488347054 CET | 80 | 49784 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:27.488414049 CET | 80 | 49784 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:27.488445044 CET | 80 | 49784 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:27.488451958 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.488492966 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.488615036 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.491940022 CET | 49784 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.496790886 CET | 80 | 49784 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:27.604176998 CET | 49785 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.609119892 CET | 80 | 49785 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:27.609263897 CET | 49785 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.609723091 CET | 49785 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:27.614521980 CET | 80 | 49785 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:28.561388969 CET | 80 | 49785 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:28.561471939 CET | 80 | 49785 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:28.561470985 CET | 49785 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:28.561552048 CET | 49785 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:28.561583996 CET | 49785 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:28.566490889 CET | 80 | 49785 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:28.680939913 CET | 49786 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:28.685867071 CET | 80 | 49786 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:28.685954094 CET | 49786 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:28.686072111 CET | 49786 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:28.690891027 CET | 80 | 49786 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:29.683609962 CET | 80 | 49786 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:29.683644056 CET | 80 | 49786 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:29.683708906 CET | 49786 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:29.683708906 CET | 49786 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:29.684035063 CET | 49786 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:29.688860893 CET | 80 | 49786 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:29.807002068 CET | 49787 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:29.811980963 CET | 80 | 49787 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:29.812120914 CET | 49787 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:29.812395096 CET | 49787 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:29.817662954 CET | 80 | 49787 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:30.808409929 CET | 80 | 49787 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:30.808475971 CET | 49787 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:30.808528900 CET | 80 | 49787 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:30.808581114 CET | 49787 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:30.808664083 CET | 49787 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:30.814682961 CET | 80 | 49787 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:30.915838003 CET | 49788 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:30.921284914 CET | 80 | 49788 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:30.921365023 CET | 49788 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:30.921494007 CET | 49788 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:30.926664114 CET | 80 | 49788 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:31.773916960 CET | 80 | 49788 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:31.773998022 CET | 49788 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:31.774084091 CET | 49788 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:31.779921055 CET | 80 | 49788 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:31.884376049 CET | 49789 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:31.889261007 CET | 80 | 49789 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:31.889424086 CET | 49789 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:31.889554977 CET | 49789 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:31.894366980 CET | 80 | 49789 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:35.897260904 CET | 49789 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.008863926 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.013727903 CET | 80 | 49790 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:36.013813019 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.013983965 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.018774986 CET | 80 | 49790 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:36.979285002 CET | 80 | 49790 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:36.979358912 CET | 80 | 49790 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:36.979387999 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.979417086 CET | 80 | 49790 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:36.979438066 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.979582071 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.979650974 CET | 49790 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:36.984580040 CET | 80 | 49790 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:37.089170933 CET | 49791 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:37.094669104 CET | 80 | 49791 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:37.097176075 CET | 49791 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:37.101083040 CET | 49791 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:37.106437922 CET | 80 | 49791 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:38.083818913 CET | 80 | 49791 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:38.083842039 CET | 80 | 49791 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:38.083875895 CET | 49791 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:38.083911896 CET | 49791 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:38.084042072 CET | 49791 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:38.088998079 CET | 80 | 49791 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:38.197191000 CET | 49792 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:38.202244997 CET | 80 | 49792 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:38.202311993 CET | 49792 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:38.202440023 CET | 49792 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:38.207274914 CET | 80 | 49792 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:39.188714981 CET | 80 | 49792 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:39.188783884 CET | 80 | 49792 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:39.188911915 CET | 49792 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:39.190100908 CET | 49792 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:39.194890022 CET | 80 | 49792 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:39.306158066 CET | 49793 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:39.311103106 CET | 80 | 49793 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:39.313170910 CET | 49793 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:39.317768097 CET | 49793 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:39.322505951 CET | 80 | 49793 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:40.258126974 CET | 80 | 49793 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:40.258187056 CET | 49793 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:40.258228064 CET | 80 | 49793 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:40.258268118 CET | 49793 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:40.258311987 CET | 49793 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:40.263042927 CET | 80 | 49793 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:40.370994091 CET | 49794 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:40.375900030 CET | 80 | 49794 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:40.379117012 CET | 49794 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:40.382991076 CET | 49794 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:40.387859106 CET | 80 | 49794 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:44.379884958 CET | 80 | 49794 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:44.379998922 CET | 80 | 49794 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:44.380070925 CET | 49794 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:44.383024931 CET | 49794 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:44.387865067 CET | 80 | 49794 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:44.605537891 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:44.612663984 CET | 80 | 49795 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:44.612761974 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:44.612925053 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:44.620105028 CET | 80 | 49795 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:45.576145887 CET | 80 | 49795 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:45.576211929 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.576221943 CET | 80 | 49795 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:45.576301098 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.576322079 CET | 80 | 49795 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:45.576370955 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.576488972 CET | 49795 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.581219912 CET | 80 | 49795 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:45.682523012 CET | 49796 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.687347889 CET | 80 | 49796 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:45.687417984 CET | 49796 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.687546015 CET | 49796 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:45.692322969 CET | 80 | 49796 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:46.673100948 CET | 80 | 49796 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:46.673121929 CET | 80 | 49796 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:46.677290916 CET | 49796 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:46.677290916 CET | 49796 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:46.682312965 CET | 80 | 49796 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:46.794991970 CET | 49797 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:46.800015926 CET | 80 | 49797 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:46.803061008 CET | 49797 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:46.803208113 CET | 49797 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:46.808160067 CET | 80 | 49797 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:47.753010035 CET | 80 | 49797 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:47.753083944 CET | 49797 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:47.753118038 CET | 80 | 49797 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:47.753253937 CET | 49797 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:47.780354023 CET | 49797 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:47.785161972 CET | 80 | 49797 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:47.994807959 CET | 49798 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:47.999682903 CET | 80 | 49798 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:47.999747038 CET | 49798 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:48.000396967 CET | 49798 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:48.005237103 CET | 80 | 49798 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:51.939306021 CET | 80 | 49798 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:51.939357042 CET | 80 | 49798 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:51.939380884 CET | 49798 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:51.939429998 CET | 49798 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:51.939539909 CET | 49798 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:51.944320917 CET | 80 | 49798 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:52.056777000 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:52.061800003 CET | 80 | 49799 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:52.061876059 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:52.062064886 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:52.066884995 CET | 80 | 49799 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:53.681771040 CET | 80 | 49799 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:53.681835890 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.681925058 CET | 80 | 49799 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:53.682018995 CET | 80 | 49799 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:53.682060957 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.682060957 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.791028976 CET | 49799 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.791484118 CET | 49800 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.796489000 CET | 80 | 49799 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:53.797045946 CET | 80 | 49800 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:53.797115088 CET | 49800 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.797283888 CET | 49800 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:53.803668976 CET | 80 | 49800 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:54.773519039 CET | 80 | 49800 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:54.773649931 CET | 49800 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:54.773660898 CET | 80 | 49800 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:54.774101973 CET | 49800 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:54.884599924 CET | 49801 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:54.884599924 CET | 49800 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:54.889432907 CET | 80 | 49800 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:54.889456034 CET | 80 | 49801 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:54.889682055 CET | 49801 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:54.890147924 CET | 49801 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:54.894954920 CET | 80 | 49801 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:59.413872004 CET | 49801 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:59.540498018 CET | 49802 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:59.545389891 CET | 80 | 49802 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:28:59.545504093 CET | 49802 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:59.546215057 CET | 49802 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:28:59.550957918 CET | 80 | 49802 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:00.536429882 CET | 80 | 49802 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:00.536494017 CET | 80 | 49802 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:00.536504030 CET | 49802 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:00.536545992 CET | 49802 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:00.536727905 CET | 49802 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:00.541559935 CET | 80 | 49802 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:00.650347948 CET | 49803 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:00.655217886 CET | 80 | 49803 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:00.655456066 CET | 49803 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:00.655646086 CET | 49803 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:00.660442114 CET | 80 | 49803 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:02.417505026 CET | 80 | 49803 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:02.417536020 CET | 80 | 49803 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:02.417557001 CET | 80 | 49803 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:02.417594910 CET | 49803 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:02.417629004 CET | 49803 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:02.422213078 CET | 49803 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:02.427032948 CET | 80 | 49803 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:02.542572975 CET | 49804 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:02.547422886 CET | 80 | 49804 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:02.547602892 CET | 49804 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:02.547645092 CET | 49804 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:02.552460909 CET | 80 | 49804 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:03.528382063 CET | 80 | 49804 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:03.528558969 CET | 80 | 49804 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:03.528752089 CET | 49804 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:03.528784037 CET | 49804 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:03.533561945 CET | 80 | 49804 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:03.634287119 CET | 49805 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:03.639147997 CET | 80 | 49805 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:03.639292002 CET | 49805 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:03.639604092 CET | 49805 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:03.644345999 CET | 80 | 49805 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:04.608283997 CET | 80 | 49805 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:04.608355045 CET | 80 | 49805 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:04.608371019 CET | 49805 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:04.608417988 CET | 49805 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:04.608511925 CET | 49805 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:04.613358021 CET | 80 | 49805 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:04.712095022 CET | 49806 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:04.717012882 CET | 80 | 49806 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:04.717242002 CET | 49806 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:04.717242002 CET | 49806 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:04.722152948 CET | 80 | 49806 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:05.652791023 CET | 80 | 49806 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:05.652890921 CET | 80 | 49806 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:05.652910948 CET | 49806 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:05.652998924 CET | 49806 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:05.653964043 CET | 49806 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:05.665380955 CET | 80 | 49806 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:05.758507013 CET | 49807 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:05.763273954 CET | 80 | 49807 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:05.764060974 CET | 49807 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:05.764166117 CET | 49807 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:05.768943071 CET | 80 | 49807 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:08.144260883 CET | 80 | 49807 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:08.144396067 CET | 80 | 49807 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:08.144539118 CET | 49807 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:08.145934105 CET | 49807 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:08.150675058 CET | 80 | 49807 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:08.258620977 CET | 49808 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:08.263487101 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:08.267071009 CET | 49808 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:08.267235041 CET | 49808 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:08.271956921 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.416951895 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.416963100 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.416975975 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.416986942 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.417069912 CET | 49808 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:09.417069912 CET | 49808 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:09.417213917 CET | 49808 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:09.425451040 CET | 80 | 49808 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.524593115 CET | 49809 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:09.529373884 CET | 80 | 49809 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:09.531049013 CET | 49809 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:09.531135082 CET | 49809 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:09.535898924 CET | 80 | 49809 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:13.537892103 CET | 49809 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:13.649282932 CET | 49810 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:13.654272079 CET | 80 | 49810 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:13.654370070 CET | 49810 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:13.654551029 CET | 49810 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:13.659374952 CET | 80 | 49810 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:14.656960964 CET | 80 | 49810 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:14.657013893 CET | 80 | 49810 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:14.657022953 CET | 49810 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:14.657056093 CET | 49810 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:14.657172918 CET | 49810 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:14.661876917 CET | 80 | 49810 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:14.774673939 CET | 49811 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:14.779577017 CET | 80 | 49811 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:14.779640913 CET | 49811 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:14.779822111 CET | 49811 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:14.784567118 CET | 80 | 49811 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:15.778203964 CET | 80 | 49811 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:15.778273106 CET | 80 | 49811 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:15.778363943 CET | 49811 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:15.778610945 CET | 49811 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:15.783359051 CET | 80 | 49811 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:15.891083956 CET | 49812 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:15.895989895 CET | 80 | 49812 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:15.896146059 CET | 49812 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:15.896365881 CET | 49812 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:15.901204109 CET | 80 | 49812 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:16.884021997 CET | 80 | 49812 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:16.884074926 CET | 49812 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:16.884212017 CET | 80 | 49812 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:16.884252071 CET | 49812 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:16.884829998 CET | 49812 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:16.889565945 CET | 80 | 49812 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:16.996531010 CET | 49813 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:17.001760006 CET | 80 | 49813 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:17.001827955 CET | 49813 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:17.001980066 CET | 49813 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:17.006783962 CET | 80 | 49813 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:18.007044077 CET | 80 | 49813 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:18.007100105 CET | 80 | 49813 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:18.007169962 CET | 49813 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:18.007169962 CET | 49813 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:18.007272005 CET | 49813 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:18.012026072 CET | 80 | 49813 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:18.118966103 CET | 49814 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:18.123812914 CET | 80 | 49814 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:18.125051975 CET | 49814 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:18.125232935 CET | 49814 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:18.129987001 CET | 80 | 49814 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:19.134562969 CET | 80 | 49814 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:19.134605885 CET | 80 | 49814 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:19.134628057 CET | 49814 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:19.134658098 CET | 49814 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:19.134789944 CET | 49814 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:19.139617920 CET | 80 | 49814 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:19.244532108 CET | 49815 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:19.249428034 CET | 80 | 49815 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:19.249490976 CET | 49815 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:19.249758005 CET | 49815 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:19.254493952 CET | 80 | 49815 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:20.260967970 CET | 80 | 49815 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:20.261071920 CET | 80 | 49815 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:20.262352943 CET | 49815 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:20.263334036 CET | 49815 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:20.268054962 CET | 80 | 49815 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:20.403031111 CET | 49816 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:20.407856941 CET | 80 | 49816 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:20.407929897 CET | 49816 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:20.409785986 CET | 49816 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:20.414520025 CET | 80 | 49816 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:21.353132963 CET | 80 | 49816 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:21.353199959 CET | 49816 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:21.353234053 CET | 80 | 49816 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:21.353281975 CET | 49816 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:21.354074001 CET | 49816 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:21.358880997 CET | 80 | 49816 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:21.462937117 CET | 49817 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:21.467811108 CET | 80 | 49817 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:21.467997074 CET | 49817 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:21.468386889 CET | 49817 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:21.473195076 CET | 80 | 49817 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:22.463193893 CET | 80 | 49817 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:22.463246107 CET | 49817 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:22.463304996 CET | 80 | 49817 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:22.463351965 CET | 49817 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:22.463510990 CET | 49817 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:22.468321085 CET | 80 | 49817 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:22.572868109 CET | 49818 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:22.577686071 CET | 80 | 49818 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:22.577758074 CET | 49818 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:22.577879906 CET | 49818 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:22.582690954 CET | 80 | 49818 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:23.562367916 CET | 80 | 49818 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:23.562550068 CET | 80 | 49818 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:23.562586069 CET | 80 | 49818 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:23.562844992 CET | 49818 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:23.562918901 CET | 49818 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:23.567648888 CET | 80 | 49818 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:23.680821896 CET | 49819 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:23.687469959 CET | 80 | 49819 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:23.689054966 CET | 49819 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:23.690064907 CET | 49819 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:23.694829941 CET | 80 | 49819 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:24.631443977 CET | 80 | 49819 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:24.631480932 CET | 80 | 49819 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:24.631526947 CET | 49819 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:24.631567001 CET | 49819 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:24.632074118 CET | 49819 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:24.636801004 CET | 80 | 49819 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:24.743928909 CET | 49820 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:24.748733044 CET | 80 | 49820 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:24.748795033 CET | 49820 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:24.749212980 CET | 49820 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:24.754029036 CET | 80 | 49820 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:25.726171017 CET | 80 | 49820 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:25.726248980 CET | 80 | 49820 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:25.726362944 CET | 49820 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:25.728235960 CET | 49820 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:25.733028889 CET | 80 | 49820 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:25.953387022 CET | 49821 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:25.958170891 CET | 80 | 49821 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:25.958314896 CET | 49821 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:25.958554983 CET | 49821 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:25.963326931 CET | 80 | 49821 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:26.908431053 CET | 80 | 49821 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:26.908493042 CET | 49821 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:26.908550978 CET | 80 | 49821 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:26.908597946 CET | 49821 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:27.025726080 CET | 49821 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:27.026123047 CET | 49822 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:27.030596018 CET | 80 | 49821 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:27.030968904 CET | 80 | 49822 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:27.031033039 CET | 49822 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:27.031115055 CET | 49822 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:27.035871983 CET | 80 | 49822 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:31.037956953 CET | 49822 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:31.150284052 CET | 49823 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:31.155169964 CET | 80 | 49823 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:31.155242920 CET | 49823 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:31.155375004 CET | 49823 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:31.160147905 CET | 80 | 49823 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:32.129740953 CET | 80 | 49823 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:32.129798889 CET | 80 | 49823 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:32.133806944 CET | 49823 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:32.166349888 CET | 49823 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:32.171287060 CET | 80 | 49823 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:32.275594950 CET | 49824 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:32.280527115 CET | 80 | 49824 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:32.280647039 CET | 49824 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:32.280879974 CET | 49824 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:32.286654949 CET | 80 | 49824 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:33.879856110 CET | 80 | 49824 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:33.879950047 CET | 80 | 49824 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:33.879973888 CET | 49824 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:33.882994890 CET | 49824 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:33.992861986 CET | 49824 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:33.995134115 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:33.997649908 CET | 80 | 49824 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:34.000339031 CET | 80 | 49825 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:34.003004074 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:34.003082991 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:34.011291027 CET | 80 | 49825 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:34.967295885 CET | 80 | 49825 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:34.967349052 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:34.967389107 CET | 80 | 49825 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:34.967407942 CET | 80 | 49825 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:34.967427015 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:34.967456102 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:34.968158007 CET | 49825 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:34.972940922 CET | 80 | 49825 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:35.123492002 CET | 49826 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:35.128458023 CET | 80 | 49826 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:35.128525019 CET | 49826 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:35.142998934 CET | 49826 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:35.147840023 CET | 80 | 49826 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:39.144649029 CET | 80 | 49826 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:39.144714117 CET | 49826 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:39.144877911 CET | 80 | 49826 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:39.144922972 CET | 49826 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:39.260435104 CET | 49826 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:39.260900021 CET | 49827 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:39.269013882 CET | 80 | 49826 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:39.269030094 CET | 80 | 49827 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:39.269109964 CET | 49827 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:39.269295931 CET | 49827 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:39.278930902 CET | 80 | 49827 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:40.236238003 CET | 80 | 49827 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:40.236628056 CET | 80 | 49827 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:40.239007950 CET | 49827 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:40.239240885 CET | 49827 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:40.244147062 CET | 80 | 49827 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:40.353065968 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:40.358165026 CET | 80 | 49828 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:40.359033108 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:40.359179020 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:40.363950014 CET | 80 | 49828 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:41.986717939 CET | 80 | 49828 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:41.986922026 CET | 80 | 49828 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:41.986922026 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:41.987015009 CET | 80 | 49828 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:41.987031937 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:41.987155914 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:41.989934921 CET | 49828 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:41.994721889 CET | 80 | 49828 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:42.103010893 CET | 49829 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:42.107904911 CET | 80 | 49829 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:42.108087063 CET | 49829 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:42.108176947 CET | 49829 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:42.112998962 CET | 80 | 49829 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:43.064197063 CET | 80 | 49829 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:43.064261913 CET | 80 | 49829 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:43.064435005 CET | 49829 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:43.066987991 CET | 49829 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:43.180999994 CET | 49829 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:43.181238890 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:43.185916901 CET | 80 | 49829 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:43.186192989 CET | 80 | 49830 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:43.186419010 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:43.186630011 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:43.191529989 CET | 80 | 49830 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:44.147357941 CET | 80 | 49830 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:44.147422075 CET | 80 | 49830 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:44.147428036 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.147458076 CET | 80 | 49830 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:44.147464991 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.147500038 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.147855997 CET | 49830 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.152729988 CET | 80 | 49830 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:44.258955002 CET | 49831 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.264101982 CET | 80 | 49831 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:44.264208078 CET | 49831 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.264313936 CET | 49831 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:44.269227028 CET | 80 | 49831 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:45.863683939 CET | 80 | 49831 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:45.863743067 CET | 80 | 49831 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:45.863756895 CET | 49831 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:45.863807917 CET | 49831 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:45.864142895 CET | 49831 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:45.869062901 CET | 80 | 49831 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:46.099179029 CET | 49832 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:46.104444027 CET | 80 | 49832 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:46.104538918 CET | 49832 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:46.122823000 CET | 49832 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:46.127707005 CET | 80 | 49832 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:47.095360041 CET | 80 | 49832 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:47.095436096 CET | 80 | 49832 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:47.095470905 CET | 49832 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:47.095541954 CET | 49832 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:47.095613956 CET | 49832 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:47.100492001 CET | 80 | 49832 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:47.212054968 CET | 49833 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:47.217222929 CET | 80 | 49833 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:47.217313051 CET | 49833 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:47.217442036 CET | 49833 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:47.222394943 CET | 80 | 49833 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:51.199580908 CET | 80 | 49833 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:51.199651003 CET | 49833 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:51.199698925 CET | 80 | 49833 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:51.199739933 CET | 49833 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:51.199831009 CET | 49833 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:51.204530954 CET | 80 | 49833 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:51.305890083 CET | 49834 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:51.310798883 CET | 80 | 49834 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:51.310872078 CET | 49834 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:51.310986042 CET | 49834 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:51.315768003 CET | 80 | 49834 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:55.313442945 CET | 49834 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:55.467858076 CET | 49835 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:55.473121881 CET | 80 | 49835 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:55.473243952 CET | 49835 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:55.475022078 CET | 49835 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:55.479979038 CET | 80 | 49835 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:59.447546959 CET | 80 | 49835 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:59.447575092 CET | 80 | 49835 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:59.447719097 CET | 49835 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:59.447813034 CET | 49835 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:59.452579975 CET | 80 | 49835 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:59.556885004 CET | 49836 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:59.561774015 CET | 80 | 49836 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:29:59.561853886 CET | 49836 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:59.562051058 CET | 49836 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:29:59.566802025 CET | 80 | 49836 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:01.140414000 CET | 80 | 49836 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:01.140435934 CET | 80 | 49836 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:01.140563011 CET | 49836 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:01.140782118 CET | 49836 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:01.145617962 CET | 80 | 49836 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:01.260026932 CET | 49837 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:01.265607119 CET | 80 | 49837 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:01.265718937 CET | 49837 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:01.265882015 CET | 49837 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:01.271116018 CET | 80 | 49837 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:05.272417068 CET | 49837 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:05.385138988 CET | 49838 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:05.390315056 CET | 80 | 49838 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:05.390459061 CET | 49838 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:05.393604040 CET | 49838 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:05.398488045 CET | 80 | 49838 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:09.410484076 CET | 49838 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:09.647708893 CET | 49839 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:09.652602911 CET | 80 | 49839 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:09.652673006 CET | 49839 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:09.653590918 CET | 49839 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:09.658557892 CET | 80 | 49839 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:10.625997066 CET | 80 | 49839 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:10.626405954 CET | 80 | 49839 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:10.626424074 CET | 80 | 49839 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:10.626606941 CET | 49839 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:10.626792908 CET | 49839 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:10.631822109 CET | 80 | 49839 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:10.743510008 CET | 49840 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:10.748519897 CET | 80 | 49840 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:10.750987053 CET | 49840 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:10.751080036 CET | 49840 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:10.755889893 CET | 80 | 49840 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:11.767172098 CET | 80 | 49840 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:11.767241955 CET | 80 | 49840 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:11.767239094 CET | 49840 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:11.767292976 CET | 49840 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:11.767380953 CET | 49840 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:11.772198915 CET | 80 | 49840 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:11.885257959 CET | 49841 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:11.890403032 CET | 80 | 49841 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:11.890535116 CET | 49841 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:11.890676022 CET | 49841 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:11.895509958 CET | 80 | 49841 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:12.876468897 CET | 80 | 49841 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:12.876609087 CET | 80 | 49841 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:12.876687050 CET | 49841 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:12.876688004 CET | 49841 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:12.877587080 CET | 49841 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:12.882400036 CET | 80 | 49841 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:12.994792938 CET | 49842 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:13.000751972 CET | 80 | 49842 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:13.000850916 CET | 49842 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:13.001436949 CET | 49842 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:13.006820917 CET | 80 | 49842 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:13.970474958 CET | 80 | 49842 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:13.970537901 CET | 80 | 49842 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:13.970551968 CET | 49842 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:13.970602036 CET | 49842 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:13.970792055 CET | 49842 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:13.975572109 CET | 80 | 49842 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:14.087336063 CET | 49843 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:14.092154980 CET | 80 | 49843 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:14.092220068 CET | 49843 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:14.092387915 CET | 49843 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:14.097187042 CET | 80 | 49843 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:24.056334972 CET | 80 | 49843 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:24.056401968 CET | 49843 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:24.056410074 CET | 80 | 49843 | 8.148.6.140 | 192.168.2.8 |
| Jan 10, 2025 09:30:24.056478024 CET | 49843 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:24.056538105 CET | 49843 | 80 | 192.168.2.8 | 8.148.6.140 |
| Jan 10, 2025 09:30:24.061918020 CET | 80 | 49843 | 8.148.6.140 | 192.168.2.8 |
|
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 0 | 192.168.2.8 | 49706 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:12.423816919 CET | 544 | OUT | |
| Jan 10, 2025 09:26:13.407344103 CET | 248 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 1 | 192.168.2.8 | 49707 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:13.528750896 CET | 544 | OUT | |
| Jan 10, 2025 09:26:17.519165039 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 2 | 192.168.2.8 | 49708 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:17.644833088 CET | 544 | OUT | |
| Jan 10, 2025 09:26:18.610219955 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 3 | 192.168.2.8 | 49709 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:18.731815100 CET | 544 | OUT | |
| Jan 10, 2025 09:26:19.700913906 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 4 | 192.168.2.8 | 49710 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:19.809997082 CET | 544 | OUT | |
| Jan 10, 2025 09:26:20.779411077 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 5 | 192.168.2.8 | 49711 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:20.929698944 CET | 544 | OUT | |
| Jan 10, 2025 09:26:21.920200109 CET | 421 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 6 | 192.168.2.8 | 49712 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:22.029737949 CET | 544 | OUT | |
| Jan 10, 2025 09:26:23.015799999 CET | 529 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 7 | 192.168.2.8 | 49713 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:23.149082899 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 8 | 192.168.2.8 | 49717 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:27.563920975 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 9 | 192.168.2.8 | 49718 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:31.684649944 CET | 544 | OUT | |
| Jan 10, 2025 09:26:32.670253038 CET | 569 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 10 | 192.168.2.8 | 49719 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:32.795144081 CET | 544 | OUT | |
| Jan 10, 2025 09:26:35.131047964 CET | 248 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 11 | 192.168.2.8 | 49720 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:35.247235060 CET | 544 | OUT | |
| Jan 10, 2025 09:26:36.224260092 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 12 | 192.168.2.8 | 49721 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:36.340878010 CET | 544 | OUT | |
| Jan 10, 2025 09:26:37.354211092 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 13 | 192.168.2.8 | 49722 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:37.466064930 CET | 544 | OUT | |
| Jan 10, 2025 09:26:38.461850882 CET | 248 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 14 | 192.168.2.8 | 49723 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:38.575706959 CET | 544 | OUT | |
| Jan 10, 2025 09:26:39.527338028 CET | 185 | IN | |
| Jan 10, 2025 09:26:39.527494907 CET | 152 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 15 | 192.168.2.8 | 49724 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:39.637844086 CET | 544 | OUT | |
| Jan 10, 2025 09:26:40.626804113 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 16 | 192.168.2.8 | 49725 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:41.027055025 CET | 544 | OUT | |
| Jan 10, 2025 09:26:41.966902971 CET | 248 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 17 | 192.168.2.8 | 49726 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:42.075259924 CET | 544 | OUT | |
| Jan 10, 2025 09:26:43.667608023 CET | 272 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 18 | 192.168.2.8 | 49727 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:43.794128895 CET | 544 | OUT | |
| Jan 10, 2025 09:26:44.745846987 CET | 185 | IN | |
| Jan 10, 2025 09:26:44.746009111 CET | 320 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 19 | 192.168.2.8 | 49728 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:44.859091043 CET | 544 | OUT | |
| Jan 10, 2025 09:26:48.820684910 CET | 485 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 20 | 192.168.2.8 | 49729 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:48.935045004 CET | 544 | OUT | |
| Jan 10, 2025 09:26:52.894654989 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 21 | 192.168.2.8 | 49730 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:53.014978886 CET | 544 | OUT | |
| Jan 10, 2025 09:26:54.003207922 CET | 272 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 22 | 192.168.2.8 | 49731 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:54.142810106 CET | 544 | OUT | |
| Jan 10, 2025 09:26:58.124161005 CET | 248 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 23 | 192.168.2.8 | 49732 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:58.247679949 CET | 544 | OUT | |
| Jan 10, 2025 09:26:59.213568926 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 24 | 192.168.2.8 | 49733 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:26:59.325453043 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 25 | 192.168.2.8 | 49735 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:03.525893927 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 26 | 192.168.2.8 | 49736 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:04.513386965 CET | 544 | OUT | |
| Jan 10, 2025 09:27:05.492219925 CET | 549 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 27 | 192.168.2.8 | 49737 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:05.606447935 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 28 | 192.168.2.8 | 49738 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:06.596239090 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 29 | 192.168.2.8 | 49739 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:07.544533968 CET | 544 | OUT | |
| Jan 10, 2025 09:27:08.552177906 CET | 185 | IN | |
| Jan 10, 2025 09:27:08.552207947 CET | 384 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 30 | 192.168.2.8 | 49740 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:08.669513941 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 31 | 192.168.2.8 | 49741 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:09.747112036 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 32 | 192.168.2.8 | 49742 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:13.983182907 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 33 | 192.168.2.8 | 49743 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:14.935813904 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 34 | 192.168.2.8 | 49744 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:19.059979916 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 35 | 192.168.2.8 | 49745 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:20.060554028 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 36 | 192.168.2.8 | 49746 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:21.232831955 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 37 | 192.168.2.8 | 49747 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:25.236464024 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 38 | 192.168.2.8 | 49748 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:26.200710058 CET | 544 | OUT | |
| Jan 10, 2025 09:27:27.779783010 CET | 293 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 39 | 192.168.2.8 | 49749 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:27.888179064 CET | 544 | OUT | |
| Jan 10, 2025 09:27:28.878134012 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 40 | 192.168.2.8 | 49750 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:28.997987986 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 41 | 192.168.2.8 | 49751 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:29.950391054 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 42 | 192.168.2.8 | 49752 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:30.936470032 CET | 544 | OUT | |
| Jan 10, 2025 09:27:34.924786091 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 43 | 192.168.2.8 | 49753 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:35.046262980 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 44 | 192.168.2.8 | 49754 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:39.060409069 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 45 | 192.168.2.8 | 49755 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:40.093089104 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 46 | 192.168.2.8 | 49756 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:44.271183014 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 47 | 192.168.2.8 | 49757 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:45.254055977 CET | 544 | OUT | |
| Jan 10, 2025 09:27:49.239269972 CET | 185 | IN | |
| Jan 10, 2025 09:27:49.239497900 CET | 192 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 48 | 192.168.2.8 | 49758 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:49.398039103 CET | 544 | OUT | |
| Jan 10, 2025 09:27:50.366084099 CET | 185 | IN | |
| Jan 10, 2025 09:27:50.366163969 CET | 300 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 49 | 192.168.2.8 | 49759 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:50.495047092 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 50 | 192.168.2.8 | 49760 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:51.537247896 CET | 544 | OUT | |
| Jan 10, 2025 09:27:53.160536051 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 51 | 192.168.2.8 | 49761 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:53.283620119 CET | 544 | OUT | |
| Jan 10, 2025 09:27:54.252041101 CET | 485 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 52 | 192.168.2.8 | 49762 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:54.378495932 CET | 544 | OUT | |
| Jan 10, 2025 09:27:55.357736111 CET | 185 | IN | |
| Jan 10, 2025 09:27:55.357903957 CET | 384 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 53 | 192.168.2.8 | 49763 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:55.584167957 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 54 | 192.168.2.8 | 49764 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:56.564357996 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 55 | 192.168.2.8 | 49765 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:57.530797958 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 56 | 192.168.2.8 | 49766 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:27:58.503348112 CET | 544 | OUT | |
| Jan 10, 2025 09:28:00.135533094 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 57 | 192.168.2.8 | 49767 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:00.305979013 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 58 | 192.168.2.8 | 49768 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:01.252206087 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 59 | 192.168.2.8 | 49769 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:05.376934052 CET | 544 | OUT | |
| Jan 10, 2025 09:28:06.357059002 CET | 421 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 60 | 192.168.2.8 | 49770 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:06.468558073 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 61 | 192.168.2.8 | 49771 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:07.561825037 CET | 544 | OUT | |
| Jan 10, 2025 09:28:08.570158958 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 62 | 192.168.2.8 | 49772 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:08.702950954 CET | 544 | OUT | |
| Jan 10, 2025 09:28:10.308865070 CET | 272 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 63 | 192.168.2.8 | 49773 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:10.424554110 CET | 544 | OUT | |
| Jan 10, 2025 09:28:11.395093918 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 64 | 192.168.2.8 | 49774 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:11.514879942 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 65 | 192.168.2.8 | 49775 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:12.517987013 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 66 | 192.168.2.8 | 49776 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:13.533879995 CET | 544 | OUT | |
| Jan 10, 2025 09:28:15.103058100 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 67 | 192.168.2.8 | 49777 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:15.282443047 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 68 | 192.168.2.8 | 49778 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:16.250392914 CET | 544 | OUT | |
| Jan 10, 2025 09:28:17.234460115 CET | 293 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 69 | 192.168.2.8 | 49779 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:17.374104023 CET | 544 | OUT | |
| Jan 10, 2025 09:28:18.357980967 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 70 | 192.168.2.8 | 49780 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:18.499998093 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 71 | 192.168.2.8 | 49781 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:19.498692036 CET | 544 | OUT | |
| Jan 10, 2025 09:28:20.465106010 CET | 293 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 72 | 192.168.2.8 | 49782 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:20.579029083 CET | 544 | OUT | |
| Jan 10, 2025 09:28:22.157716036 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 73 | 192.168.2.8 | 49783 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:22.281745911 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 74 | 192.168.2.8 | 49784 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:26.359558105 CET | 544 | OUT | |
| Jan 10, 2025 09:28:27.488347054 CET | 293 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 75 | 192.168.2.8 | 49785 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:27.609723091 CET | 544 | OUT | |
| Jan 10, 2025 09:28:28.561388969 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 76 | 192.168.2.8 | 49786 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:28.686072111 CET | 544 | OUT | |
| Jan 10, 2025 09:28:29.683609962 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 77 | 192.168.2.8 | 49787 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:29.812395096 CET | 544 | OUT | |
| Jan 10, 2025 09:28:30.808409929 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 78 | 192.168.2.8 | 49788 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:30.921494007 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 79 | 192.168.2.8 | 49789 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:31.889554977 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 80 | 192.168.2.8 | 49790 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:36.013983965 CET | 544 | OUT | |
| Jan 10, 2025 09:28:36.979285002 CET | 185 | IN | |
| Jan 10, 2025 09:28:36.979358912 CET | 300 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 81 | 192.168.2.8 | 49791 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:37.101083040 CET | 544 | OUT | |
| Jan 10, 2025 09:28:38.083818913 CET | 421 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 82 | 192.168.2.8 | 49792 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:38.202440023 CET | 544 | OUT | |
| Jan 10, 2025 09:28:39.188714981 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 83 | 192.168.2.8 | 49793 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:39.317768097 CET | 544 | OUT | |
| Jan 10, 2025 09:28:40.258126974 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 84 | 192.168.2.8 | 49794 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:40.382991076 CET | 544 | OUT | |
| Jan 10, 2025 09:28:44.379884958 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 85 | 192.168.2.8 | 49795 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:44.612925053 CET | 544 | OUT | |
| Jan 10, 2025 09:28:45.576145887 CET | 185 | IN | |
| Jan 10, 2025 09:28:45.576221943 CET | 216 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 86 | 192.168.2.8 | 49796 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:45.687546015 CET | 544 | OUT | |
| Jan 10, 2025 09:28:46.673100948 CET | 529 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 87 | 192.168.2.8 | 49797 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:46.803208113 CET | 544 | OUT | |
| Jan 10, 2025 09:28:47.753010035 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 88 | 192.168.2.8 | 49798 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:48.000396967 CET | 544 | OUT | |
| Jan 10, 2025 09:28:51.939306021 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 89 | 192.168.2.8 | 49799 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:52.062064886 CET | 544 | OUT | |
| Jan 10, 2025 09:28:53.681771040 CET | 185 | IN | |
| Jan 10, 2025 09:28:53.681925058 CET | 192 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 90 | 192.168.2.8 | 49800 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:53.797283888 CET | 544 | OUT | |
| Jan 10, 2025 09:28:54.773519039 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 91 | 192.168.2.8 | 49801 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:54.890147924 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 92 | 192.168.2.8 | 49802 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:28:59.546215057 CET | 544 | OUT | |
| Jan 10, 2025 09:29:00.536429882 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 93 | 192.168.2.8 | 49803 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:00.655646086 CET | 544 | OUT | |
| Jan 10, 2025 09:29:02.417505026 CET | 337 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 94 | 192.168.2.8 | 49804 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:02.547645092 CET | 544 | OUT | |
| Jan 10, 2025 09:29:03.528382063 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 95 | 192.168.2.8 | 49805 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:03.639604092 CET | 544 | OUT | |
| Jan 10, 2025 09:29:04.608283997 CET | 248 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 96 | 192.168.2.8 | 49806 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:04.717242002 CET | 544 | OUT | |
| Jan 10, 2025 09:29:05.652791023 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 97 | 192.168.2.8 | 49807 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:05.764166117 CET | 544 | OUT | |
| Jan 10, 2025 09:29:08.144260883 CET | 357 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 98 | 192.168.2.8 | 49808 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:08.267235041 CET | 544 | OUT | |
| Jan 10, 2025 09:29:09.416951895 CET | 185 | IN | |
| Jan 10, 2025 09:29:09.416963100 CET | 320 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 99 | 192.168.2.8 | 49809 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:09.531135082 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 100 | 192.168.2.8 | 49810 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:13.654551029 CET | 544 | OUT | |
| Jan 10, 2025 09:29:14.656960964 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 101 | 192.168.2.8 | 49811 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:14.779822111 CET | 544 | OUT | |
| Jan 10, 2025 09:29:15.778203964 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 102 | 192.168.2.8 | 49812 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:15.896365881 CET | 544 | OUT | |
| Jan 10, 2025 09:29:16.884021997 CET | 401 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 103 | 192.168.2.8 | 49813 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:17.001980066 CET | 544 | OUT | |
| Jan 10, 2025 09:29:18.007044077 CET | 357 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 104 | 192.168.2.8 | 49814 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:18.125232935 CET | 544 | OUT | |
| Jan 10, 2025 09:29:19.134562969 CET | 529 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 105 | 192.168.2.8 | 49815 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:19.249758005 CET | 544 | OUT | |
| Jan 10, 2025 09:29:20.260967970 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 106 | 192.168.2.8 | 49816 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:20.409785986 CET | 544 | OUT | |
| Jan 10, 2025 09:29:21.353132963 CET | 272 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 107 | 192.168.2.8 | 49817 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:21.468386889 CET | 544 | OUT | |
| Jan 10, 2025 09:29:22.463193893 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 108 | 192.168.2.8 | 49818 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:22.577879906 CET | 544 | OUT | |
| Jan 10, 2025 09:29:23.562367916 CET | 185 | IN | |
| Jan 10, 2025 09:29:23.562550068 CET | 344 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 109 | 192.168.2.8 | 49819 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:23.690064907 CET | 544 | OUT | |
| Jan 10, 2025 09:29:24.631443977 CET | 465 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 110 | 192.168.2.8 | 49820 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:24.749212980 CET | 544 | OUT | |
| Jan 10, 2025 09:29:25.726171017 CET | 313 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 111 | 192.168.2.8 | 49821 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:25.958554983 CET | 544 | OUT | |
| Jan 10, 2025 09:29:26.908431053 CET | 505 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 112 | 192.168.2.8 | 49822 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:27.031115055 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 113 | 192.168.2.8 | 49823 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:31.155375004 CET | 544 | OUT | |
| Jan 10, 2025 09:29:32.129740953 CET | 549 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 114 | 192.168.2.8 | 49824 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:32.280879974 CET | 544 | OUT | |
| Jan 10, 2025 09:29:33.879856110 CET | 272 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 115 | 192.168.2.8 | 49825 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:34.003082991 CET | 544 | OUT | |
| Jan 10, 2025 09:29:34.967295885 CET | 185 | IN | |
| Jan 10, 2025 09:29:34.967389107 CET | 300 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 116 | 192.168.2.8 | 49826 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:35.142998934 CET | 544 | OUT | |
| Jan 10, 2025 09:29:39.144649029 CET | 313 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 117 | 192.168.2.8 | 49827 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:39.269295931 CET | 544 | OUT | |
| Jan 10, 2025 09:29:40.236238003 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 118 | 192.168.2.8 | 49828 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:40.359179020 CET | 544 | OUT | |
| Jan 10, 2025 09:29:41.986717939 CET | 185 | IN | |
| Jan 10, 2025 09:29:41.986922026 CET | 320 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 119 | 192.168.2.8 | 49829 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:42.108176947 CET | 544 | OUT | |
| Jan 10, 2025 09:29:43.064197063 CET | 549 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 120 | 192.168.2.8 | 49830 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:43.186630011 CET | 544 | OUT | |
| Jan 10, 2025 09:29:44.147357941 CET | 185 | IN | |
| Jan 10, 2025 09:29:44.147422075 CET | 300 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 121 | 192.168.2.8 | 49831 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:44.264313936 CET | 544 | OUT | |
| Jan 10, 2025 09:29:45.863683939 CET | 293 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 122 | 192.168.2.8 | 49832 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:46.122823000 CET | 544 | OUT | |
| Jan 10, 2025 09:29:47.095360041 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 123 | 192.168.2.8 | 49833 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:47.217442036 CET | 544 | OUT | |
| Jan 10, 2025 09:29:51.199580908 CET | 357 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 124 | 192.168.2.8 | 49834 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:51.310986042 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 125 | 192.168.2.8 | 49835 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:55.475022078 CET | 544 | OUT | |
| Jan 10, 2025 09:29:59.447546959 CET | 377 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 126 | 192.168.2.8 | 49836 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:29:59.562051058 CET | 544 | OUT | |
| Jan 10, 2025 09:30:01.140414000 CET | 337 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 127 | 192.168.2.8 | 49837 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:01.265882015 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 128 | 192.168.2.8 | 49838 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:05.393604040 CET | 544 | OUT |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 129 | 192.168.2.8 | 49839 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:09.653590918 CET | 544 | OUT | |
| Jan 10, 2025 09:30:10.625997066 CET | 185 | IN | |
| Jan 10, 2025 09:30:10.626405954 CET | 172 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 130 | 192.168.2.8 | 49840 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:10.751080036 CET | 544 | OUT | |
| Jan 10, 2025 09:30:11.767172098 CET | 441 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 131 | 192.168.2.8 | 49841 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:11.890676022 CET | 544 | OUT | |
| Jan 10, 2025 09:30:12.876468897 CET | 421 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 132 | 192.168.2.8 | 49842 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:13.001436949 CET | 544 | OUT | |
| Jan 10, 2025 09:30:13.970474958 CET | 293 | IN |
| Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
|---|---|---|---|---|---|---|
| 133 | 192.168.2.8 | 49843 | 8.148.6.140 | 80 | 7776 | C:\Users\user\Desktop\beacon_x86.exe |
| Timestamp | Bytes transferred | Direction | Data |
|---|---|---|---|
| Jan 10, 2025 09:30:14.092387915 CET | 544 | OUT | |
| Jan 10, 2025 09:30:24.056334972 CET | 529 | IN |
| Target ID: | 1 |
| Start time: | 03:26:08 |
| Start date: | 10/01/2025 |
| Path: | C:\Users\user\Desktop\beacon_x86.exe |
| Wow64 process (32bit): | true |
| Commandline: | |
| Imagebase: | 0x400000 |
| File size: | 324'096 bytes |
| MD5 hash: | BFFE5DBE4D4ECECC6652360CE37B8075 |
| Has elevated privileges: | true |
| Has administrator privileges: | true |
| Programmed in: | C, C++ or other language |
| Yara matches: |
|
| Reputation: | low |
| Has exited: | false |
Execution Graph
| Execution Coverage: | 4.6% |
| Dynamic/Decrypted Code Coverage: | 88.7% |
| Signature Coverage: | 13.9% |
| Total number of Nodes: | 746 |
| Total number of Limit Nodes: | 20 |
Graph
Control-flow Graph
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D61C3F Relevance: 16.7, APIs: 11, Instructions: 186networkfileCOMMONLIBRARYCODE
Download Yara Rule
Control-flow Graph
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6DF82 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 44encryptionCOMMONLIBRARYCODE
Download Yara Rule
Control-flow Graph
| APIs |
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 03E10000 Relevance: 1.4, APIs: 1, Instructions: 133sleepCOMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00401805 Relevance: 21.0, APIs: 3, Strings: 9, Instructions: 31threadCOMMON
Download Yara Rule
Control-flow Graph
| APIs |
| Strings |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D67E51 Relevance: 9.1, APIs: 6, Instructions: 113networkCOMMONLIBRARYCODE
Download Yara Rule
Control-flow Graph
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Control-flow Graph
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 0040156C Relevance: 7.0, APIs: 3, Strings: 1, Instructions: 47memorythreadCOMMON
Download Yara Rule
Control-flow Graph
| APIs |
| Strings |
|
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D8511C Relevance: 6.1, APIs: 4, Instructions: 93memoryCOMMONLIBRARYCODE
Download Yara Rule
Control-flow Graph
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 0081A33E Relevance: 5.4, APIs: 1, Strings: 2, Instructions: 132libraryCOMMON
Download Yara Rule
| APIs |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Yara matches |
| Similarity |
|
Function 00401296 Relevance: 5.1, APIs: 4, Instructions: 79stringCOMMON
Download Yara Rule
Control-flow Graph
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 004013B3 Relevance: 5.1, APIs: 4, Instructions: 65stringCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 0081A89E Relevance: 4.6, APIs: 1, Strings: 2, Instructions: 93memoryCOMMON
Download Yara Rule
| APIs |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Yara matches |
| Similarity |
|
Function 00D61F1B Relevance: 4.6, APIs: 3, Instructions: 68networkCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00401700 Relevance: 4.5, APIs: 3, Instructions: 49fileCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 004017AC Relevance: 4.5, APIs: 2, Strings: 1, Instructions: 26sleepCOMMON
Download Yara Rule
| APIs |
| Strings |
|
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6173C Relevance: 3.1, APIs: 2, Instructions: 115networkCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D61E6E Relevance: 3.0, APIs: 2, Instructions: 50networkCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D69802 Relevance: 1.6, APIs: 1, Instructions: 70memoryCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D72EF7 Relevance: 1.5, APIs: 1, Instructions: 25COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 0081A99E Relevance: 1.5, APIs: 1, Instructions: 22memoryCOMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Yara matches |
| Similarity |
|
Function 00D7968A Relevance: 1.5, APIs: 1, Instructions: 20memoryCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 004029E0 Relevance: 1.3, APIs: 1, Instructions: 14sleepCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D694E3 Relevance: 12.4, APIs: 6, Strings: 1, Instructions: 157processCOMMON
Download Yara Rule
| APIs |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6970E Relevance: 10.6, APIs: 7, Instructions: 84fileCOMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D67699 Relevance: 9.1, APIs: 6, Instructions: 68networkCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D675B7 Relevance: 9.1, APIs: 6, Instructions: 54networkCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00401A60 Relevance: 7.6, APIs: 5, Instructions: 55COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00401A5C Relevance: 7.5, APIs: 5, Instructions: 47COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6DDB3 Relevance: 7.5, APIs: 5, Instructions: 45networkCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6D272 Relevance: 6.1, APIs: 4, Instructions: 94COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6C320 Relevance: 6.1, APIs: 4, Instructions: 68memorynativeCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6C669 Relevance: 6.1, APIs: 4, Instructions: 66threadnativeinjectionCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6C3DF Relevance: 6.1, APIs: 4, Instructions: 63memorynativeCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D611D8 Relevance: 4.6, APIs: 3, Instructions: 131libraryloaderCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D631CB Relevance: 4.6, APIs: 3, Instructions: 75COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D63A7E Relevance: 4.6, APIs: 3, Instructions: 65processCOMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6D442 Relevance: 4.5, APIs: 3, Instructions: 42memoryCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00819FDE Relevance: 2.7, Strings: 2, Instructions: 182COMMON
Download Yara Rule
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Yara matches |
| Similarity |
|
Function 00D87190 Relevance: .4, Instructions: 435COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D86BC0 Relevance: .4, Instructions: 406COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D848FD Relevance: .4, Instructions: 384COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D844DD Relevance: .4, Instructions: 378COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D840D1 Relevance: .4, Instructions: 361COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D83CFD Relevance: .4, Instructions: 351COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 0081ACAE Relevance: .2, Instructions: 182COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Yara matches |
| Similarity |
|
Function 00D749E9 Relevance: .1, Instructions: 120COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D86945 Relevance: .1, Instructions: 90COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D67B1A Relevance: 28.2, APIs: 15, Strings: 1, Instructions: 210networkCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D61962 Relevance: 16.7, APIs: 11, Instructions: 196networksleepCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6C15B Relevance: 15.9, APIs: 1, Strings: 8, Instructions: 114COMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D67919 Relevance: 14.1, APIs: 7, Strings: 1, Instructions: 69networkCOMMON
Download Yara Rule
| APIs |
|
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6D114 Relevance: 13.6, APIs: 9, Instructions: 122COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00401C80 Relevance: 12.4, APIs: 6, Strings: 1, Instructions: 124filememoryCOMMON
Download Yara Rule
| APIs |
| Strings |
|
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D67853 Relevance: 12.3, APIs: 6, Strings: 1, Instructions: 59networksleepCOMMON
Download Yara Rule
| APIs |
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00402110 Relevance: 12.1, APIs: 8, Instructions: 90COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6D65A Relevance: 10.6, APIs: 7, Instructions: 81COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6360A Relevance: 9.1, APIs: 6, Instructions: 134COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6CF65 Relevance: 9.1, APIs: 6, Instructions: 70COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D63870 Relevance: 8.9, APIs: 4, Strings: 1, Instructions: 184processCOMMON
Download Yara Rule
| APIs |
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D63763 Relevance: 8.8, APIs: 4, Strings: 1, Instructions: 98processCOMMON
Download Yara Rule
| APIs |
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D62927 Relevance: 8.8, APIs: 4, Strings: 1, Instructions: 96COMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D608D3 Relevance: 7.6, APIs: 5, Instructions: 75COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D661C8 Relevance: 7.6, APIs: 5, Instructions: 62pipeCOMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6DC6F Relevance: 7.5, APIs: 5, Instructions: 45COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D77722 Relevance: 7.5, APIs: 5, Instructions: 44memoryCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6B0FD Relevance: 7.1, APIs: 3, Strings: 1, Instructions: 140COMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6CA6F Relevance: 7.0, APIs: 3, Strings: 1, Instructions: 41fileCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D63CCD Relevance: 6.1, APIs: 4, Instructions: 143COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D62F99 Relevance: 6.1, APIs: 4, Instructions: 138COMMON
Download Yara Rule
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D7822F Relevance: 6.1, APIs: 4, Instructions: 137COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D656BF Relevance: 6.1, APIs: 4, Instructions: 111sleeplibraryloaderCOMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D66303 Relevance: 6.1, APIs: 4, Instructions: 106sleepCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D65C20 Relevance: 6.1, APIs: 4, Instructions: 96COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D684FD Relevance: 6.1, APIs: 4, Instructions: 91threadCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D66017 Relevance: 6.1, APIs: 4, Instructions: 81synchronizationCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D622EC Relevance: 6.1, APIs: 4, Instructions: 76synchronizationpipeCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6013A Relevance: 6.1, APIs: 4, Instructions: 71COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6B8C3 Relevance: 6.1, APIs: 4, Instructions: 63COMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6CE47 Relevance: 6.0, APIs: 4, Instructions: 46sleepsynchronizationthreadCOMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6D0A1 Relevance: 6.0, APIs: 4, Instructions: 42threadCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6DD4F Relevance: 6.0, APIs: 4, Instructions: 40networkCOMMON
Download Yara Rule
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6BF6B Relevance: 5.4, APIs: 1, Strings: 2, Instructions: 141COMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D6C492 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 54COMMONLIBRARYCODE
Download Yara Rule
| APIs |
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
| APIs |
| Strings |
|
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 00D87DF9 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 23COMMONLIBRARYCODE
Download Yara Rule
| APIs |
|
| Strings |
| Memory Dump Source |
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|
Function 004022C0 Relevance: 5.0, APIs: 4, Instructions: 39COMMON
Download Yara Rule
| APIs |
|
| Memory Dump Source |
|
|
| Joe Sandbox IDA Plugin |
|
| Similarity |
|