Windows Analysis Report https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU

Overview

General Information

Sample URL:	https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU
Analysis ID:	514100
Infos:
Most interesting Screenshot:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

HTML body contains low number of good links

Connects to several IPs in different countries

No HTML title found

Classification

Signatures

Phishing:

HTML body contains low number of good links

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: Number of links: 0
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: Number of links: 0

No HTML title found

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: HTML title missing
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: HTML title missing

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="author".. found
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="author".. found

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="copyright".. found
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.203.98:443 -> 192.168.2.7:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:49963 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49961 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49960 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.157.138.20:443 -> 192.168.2.7:57263 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.120.56.129:443 -> 192.168.2.7:57267 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 77.243.60.138:443 -> 192.168.2.7:57269 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:57274 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57271 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 37.252.173.215:443 -> 192.168.2.7:57292 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.156.0.31:443 -> 192.168.2.7:57297 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57311 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57319 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57324 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.16.14:443 -> 192.168.2.7:58589 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.227.248.159:443 -> 192.168.2.7:58606 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 76.223.111.18:443 -> 192.168.2.7:58612 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 46.19.11.36:443 -> 192.168.2.7:58609 version: TLS 1.2

Networking:

Connects to several IPs in different countries

Source: unknown

Network traffic detected: IP country count 13

Source: unknown

DNS traffic detected: queries for: clients2.google.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57247
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57255
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57252
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 57255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58589
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57267
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58595
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58594
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 57244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57269
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57278
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57274
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57271
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57284
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58614 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57329
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57324
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57327
Source: unknown	Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58665
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58664
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 50209 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58667
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57222
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57223
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57226
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57227
Source: unknown	Network traffic detected: HTTP traffic on port 57233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57228
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57232
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57235
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57230
Source: unknown	Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 57310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57236
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58688
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57244
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57246
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57241
Source: unknown	Network traffic detected: HTTP traffic on port 57267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50215
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50218
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50217
Source: unknown	Network traffic detected: HTTP traffic on port 58606 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50212
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50202 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50214
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 50186 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50221
Source: unknown	Network traffic detected: HTTP traffic on port 57230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50220
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50223
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50222
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50224
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 57252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 50150 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 50224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57263 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58648 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57297
Source: unknown	Network traffic detected: HTTP traffic on port 57302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57292
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58605 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50070 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58616 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50212 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50204
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50207
Source: unknown	Network traffic detected: HTTP traffic on port 50196 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58649 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50209
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50201
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50202
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58589 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 58667 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50181
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 58609 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50186
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50188
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 57329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50190
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50192
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50195
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50204 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50172 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58633 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50197
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50196
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50199
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50198
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57226 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 50170 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019

Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232

Source: angular.js.1.dr	String found in binary or memory: http://angularjs.org
Source: angular.js.1.dr	String found in binary or memory: http://errors.angularjs.org/1.6.4-local
Source: pnacl_public_x86_64_pnacl_sz_nexe.1.dr	String found in binary or memory: http://llvm.org/):
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://tools.ietf.org/html/rfc1950
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
Source: manifest.json.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://accounts.google.com
Source: craw_window.js.1.dr	String found in binary or memory: https://accounts.google.com/MergeSession
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://ajax.googleapis.com
Source: manifest.json.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://apis.google.com
Source: mirroring_common.js.1.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: mirroring_common.js.1.dr	String found in binary or memory: https://castedumessaging-pa.googleapis.com/v1
Source: pnacl_public_x86_64_libcrt_platform_a.1.dr	String found in binary or memory: https://chromium.googlesource.com/a/native_client/pnacl-clang.git
Source: pnacl_public_x86_64_libcrt_platform_a.1.dr	String found in binary or memory: https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://clients2.google.com
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://clients2.google.com/cr/report
Source: manifest.json0.1.dr, manifest.json1.1.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://clients6.google.com
Source: f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://cm.g.doubleclick.net
Source: pnacl_public_x86_64_ld_nexe.1.dr	String found in binary or memory: https://code.google.com/p/nativeclient/issues/entry
Source: pnacl_public_x86_64_ld_nexe.1.dr	String found in binary or memory: https://code.google.com/p/nativeclient/issues/entry%s:
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://content-autofill.googleapis.com
Source: manifest.json.1.dr	String found in binary or memory: https://content.googleapis.com
Source: common.js.1.dr, mirroring_cast_streaming.js.1.dr	String found in binary or memory: https://crash.corp.google.com/samples?reportid=&q=
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://creativecommons.org/publicdomain/zero/1.0/.
Source: 6bc793fe-8b45-4e39-8be7-c1b73ab9686d.tmp.2.dr, 91adff0b-dae8-46e3-b259-1408c3267668.tmp.2.dr, 81845bdb-4489-46cb-8745-1eb6b4d95f84.tmp.2.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://dns.google
Source: mirroring_common.js.1.dr	String found in binary or memory: https://docs.google.com
Source: manifest.json.1.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: manifest.json.1.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: manifest.json.1.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: angular.js.1.dr	String found in binary or memory: https://github.com/angular/material
Source: craw_background.js.1.dr, craw_window.js.1.dr	String found in binary or memory: https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://github.com/madler/zlib/blob/master/zlib.h
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://hangouts.clients6.google.com
Source: manifest.json.1.dr	String found in binary or memory: https://hangouts.google.com/
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://hangouts.google.com/hangouts/_/logpref
Source: mirroring_common.js.1.dr	String found in binary or memory: https://meet.google.com
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://meetings.clients6.google.com
Source: mirroring_common.js.1.dr	String found in binary or memory: https://networktraversal.googleapis.com/v1alpha
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://ogs.google.com
Source: manifest.json0.1.dr, craw_window.js.1.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://preprod-hangouts-googleapis.sandbox.google.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://pubads.g.doubleclick.net
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://r4---sn-4g5e6nss.gvt1.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://redirector.gvt1.com
Source: manifest.json0.1.dr, craw_window.js.1.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: History Provider Cache.1.dr	String found in binary or memory: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://ssl.gstatic.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://stats.g.doubleclick.net
Source: messages.json27.1.dr, feedback.html.1.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json27.1.dr, feedback.html.1.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: craw_background.js.1.dr, craw_window.js.1.dr	String found in binary or memory: https://www-googleapis-staging.sandbox.google.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.google-analytics.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.google.co.uk
Source: manifest.json.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.google.com
Source: manifest.json0.1.dr	String found in binary or memory: https://www.google.com/
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/accounts/OAuthLogin?issueuberauth=1
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/images/dot2.gif
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/images/x2.gif
Source: craw_background.js.1.dr	String found in binary or memory: https://www.google.com/intl/en-US/chrome/blank.html
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: feedback_script.js.1.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: manifest.json.1.dr	String found in binary or memory: https://www.google.com;
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: craw_background.js.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, craw_window.js.1.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: mirroring_common.js.1.dr	String found in binary or memory: https://www.googleapis.com/calendar/v3
Source: mirroring_common.js.1.dr	String found in binary or memory: https://www.googleapis.com/hangouts/v1
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.gstatic.com
Source: common.js.1.dr	String found in binary or memory: https://www.gstatic.com/hangouts_echo_detector/release/%
Source: manifest.json.1.dr	String found in binary or memory: https://www.gstatic.com;
Source: History Provider Cache.1.dr	String found in binary or memory: https://www.rchsd.org/about-us/2

Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.203.98:443 -> 192.168.2.7:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:49963 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49961 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49960 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.157.138.20:443 -> 192.168.2.7:57263 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.120.56.129:443 -> 192.168.2.7:57267 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 77.243.60.138:443 -> 192.168.2.7:57269 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:57274 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57271 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 37.252.173.215:443 -> 192.168.2.7:57292 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.156.0.31:443 -> 192.168.2.7:57297 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57311 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57319 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57324 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.16.14:443 -> 192.168.2.7:58589 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.227.248.159:443 -> 192.168.2.7:58606 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 76.223.111.18:443 -> 192.168.2.7:58612 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 46.19.11.36:443 -> 192.168.2.7:58609 version: TLS 1.2

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user~1\AppData\Local\Temp\e2524fb5-dae4-4dc3-89db-84c45e773e98.tmp

Jump to behavior

Source: classification engine

Classification label: clean1.win@38/210@161/79

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,1080383137737942703,10415530265892783596,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1920 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,1080383137737942703,10415530265892783596,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1920 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU

Joe Sandbox Cloud Basic: Detection: clean Score: 0

Perma Link

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-618204C3-984.pma

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.16.122.175	unpkg.com	United States	13335	CLOUDFLARENETUS	false
216.58.215.237	accounts.google.com	United States	15169	GOOGLEUS	false
50.16.7.188	unknown	United States	14618	AMAZON-AESUS	false
157.240.17.35	star-mini.c10r.facebook.com	United States	32934	FACEBOOKUS	false
185.64.190.80	pug-lhr.pubmatic.com	United Kingdom	62713	AS-PUBMATICUS	false
3.248.38.136	dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
64.58.232.179	global.ib-ibi.com	United States	13649	ASN-VINSUS	false
3.124.210.90	ps.eyeota.net	United States	16509	AMAZON-02US	false
35.227.248.159	pixel.tapad.com	United States	15169	GOOGLEUS	false
52.218.96.10	s3-eu-west-1.amazonaws.com	United States	16509	AMAZON-02US	false
65.9.71.36	d3i42lyttuj6qr.cloudfront.net	United States	16509	AMAZON-02US	false
35.174.210.7	a2f905133e04e4d35ade9cd4751dd35b-4fd69d4b6621dbbd.elb.us-east-1.amazonaws.com	United States	14618	AMAZON-AESUS	false
3.66.41.54	eu2-ice.360yield.com	United States	16509	AMAZON-02US	false
52.30.140.199	sync.crwdcntrl.net	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
18.156.0.31	prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud	United States	16509	AMAZON-02US	false
143.204.215.111	embeds.driftcdn.com	United States	16509	AMAZON-02US	false
35.244.174.68	id.rlcdn.com	United States	15169	GOOGLEUS	false
80.82.217.100	cm.adsafety.net	Germany	24961	MYLOC-ASIPBackboneofmyLocmanagedITAGDE	false
35.190.16.14	redirect.frontend.weborama.fr	United States	15169	GOOGLEUS	false
52.49.53.128	match.prod.bidr.io	United States	16509	AMAZON-02US	false
188.132.147.235	unknown	Turkey	42910	PREMIERDC-VERI-MERKEZI-ANONIM-SIRKETIPREMIERDC-SHTR	false
63.71.15.141	secure-chsd.org	United States	13380	ASN-CUSTUS	false
88.99.214.77	sync.1dmp.io	Germany	24940	HETZNER-ASDE	false
54.78.254.47	load-euw1.exelator.com	United States	16509	AMAZON-02US	false
52.18.60.235	prod-dub-beacon-1484770602.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
65.9.71.23	d2znr2yi078d75.cloudfront.net	United States	16509	AMAZON-02US	false
45.223.138.206	b9odqbm.impervadns.net	United States	327849	ROCKETNETZA	false
157.240.17.15	scontent.xx.fbcdn.net	United States	32934	FACEBOOKUS	false
13.32.22.99	tag.demandbase.com	United States	7018	ATT-INTERNET4US	false
172.217.168.65	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
143.204.215.100	segments.company-target.com	United States	16509	AMAZON-02US	false
3.120.56.129	elb-aws-fr-bruges-621602890.eu-central-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
188.132.147.227	ads4.admatic.com.tr	Turkey	42910	PREMIERDC-VERI-MERKEZI-ANONIM-SIRKETIPREMIERDC-SHTR	false
142.250.186.136	www-googletagmanager.l.google.com	United States	15169	GOOGLEUS	false
34.120.202.204	fresnel.vimeocdn.com	United States	15169	GOOGLEUS	false
37.157.2.249	istrp.adform.net	Denmark	198622	ADFORMDK	false
199.30.234.249	zix.com	United States	13380	ASN-CUSTUS	false
13.32.22.27	s.ad.smaato.net	United States	7018	ATT-INTERNET4US	false
18.198.109.212	httplogserver-lb.global.unified-prod.sharethis.net	United States	16509	AMAZON-02US	false
172.217.168.78	clients.l.google.com	United States	15169	GOOGLEUS	false
46.19.11.36	match.contentexchange.me	Slovenia	51790	SIELSI	false
143.204.215.82	api.company-target.com	United States	16509	AMAZON-02US	false
143.204.215.88	dl7g9llrghqi1.cloudfront.net	United States	16509	AMAZON-02US	false
104.16.19.94	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
80.85.85.173	cm.smartstream.tv	United Kingdom	63949	LINODE-APLinodeLLCUS	false
52.89.239.64	dxedge-prod-lb-1585771072.us-west-2.elb.amazonaws.com	United States	16509	AMAZON-02US	false
54.147.21.139	unknown	United States	14618	AMAZON-AESUS	false
151.101.0.217	vimeo.com	United States	54113	FASTLYUS	false
80.82.217.92	ads.smartstream.tv	Germany	24961	MYLOC-ASIPBackboneofmyLocmanagedITAGDE	false
34.206.192.53	a.audrte.com	United States	14618	AMAZON-AESUS	false
77.243.60.138	uip.semasio.net	Denmark	42697	NETIC-ASDK	false
34.234.150.139	alb-event-1454785217.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
108.174.11.85	pop-edc2.mix.linkedin.com	United States	14413	LINKEDINUS	false
142.250.203.98	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
142.250.203.99	gstaticadssl.l.google.com	United States	15169	GOOGLEUS	false
52.223.40.198	match.adsrvr.org	United States	8987	AMAZONEXPANSIONGB	false
82.145.213.8	outspot2-ams.adx.opera.com	United Kingdom	39832	NO-OPERANO	false
51.195.5.232	unknown	France	16276	OVHFR	false
35.169.187.184	ee15ba61-wschat-wschatalb-6fcf-2062696737.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
37.252.173.215	ib.anycast.adnxs.com	European Union	29990	ASN-APPNEXUS	false
139.162.147.24	tags.adsafety.net	Netherlands	63949	LINODE-APLinodeLLCUS	false
13.32.22.126	platform-api.sharethis.com	United States	7018	ATT-INTERNET4US	false
52.211.146.69	adstax-match-proxy.adrtx.net	United States	16509	AMAZON-02US	false
85.114.159.93	dsp.adfarm1.adition.com	Germany	24961	MYLOC-ASIPBackboneofmyLocmanagedITAGDE	false
146.59.148.16	pixel.onaudience.com	Norway	16276	OVHFR	false
18.184.201.8	prod.ups-eu-central-1.aolp-ds-prd.aws.oath.cloud	United States	16509	AMAZON-02US	false
76.223.111.18	eu-eb2.3lift.com	United States	16509	AMAZON-02US	false
35.176.195.187	aa-agkn-com-https-1893222849.eu-west-2.elb.amazonaws.com	United States	16509	AMAZON-02US	false
54.173.95.250	unknown	United States	14618	AMAZON-AESUS	false
151.101.114.109	vimeo-video.map.fastly.net	United States	54113	FASTLYUS	false
35.157.138.20	ih.adscale.de	United States	16509	AMAZON-02US	false
142.250.145.156	stats.l.doubleclick.net	United States	15169	GOOGLEUS	false
172.217.168.36	www.google.com	United States	15169	GOOGLEUS	false
104.16.168.82	ws.zoominfo.com	United States	13335	CLOUDFLARENETUS	false
34.98.64.218	eu-u.openx.net	United States	15169	GOOGLEUS	false
199.187.193.193	rtb-csync-tmk.smartadserver.com	Canada	47043	SMARTADSERVERCA	false

Private

IP
192.168.2.1
127.0.0.1

Contacted Domains

Name	IP	Active
gstaticadssl.l.google.com	142.250.203.99	true
pug-lhr.pubmatic.com	185.64.190.80	true
segments.company-target.com	143.204.215.100	true
ee15ba61-wschat-wschatalb-6fcf-2062696737.us-east-1.elb.amazonaws.com	35.169.187.184	true
eu-u.openx.net	34.98.64.218	true
dxedge-prod-lb-1585771072.us-west-2.elb.amazonaws.com	52.89.239.64	true
eu-eb2.3lift.com	76.223.111.18	true
b9odqbm.impervadns.net	45.223.138.206	true
ih.adscale.de	35.157.138.20	true
httplogserver-lb.global.unified-prod.sharethis.net	18.198.109.212	true
elb-aws-fr-bruges-621602890.eu-central-1.elb.amazonaws.com	3.120.56.129	true
sync.crwdcntrl.net	52.30.140.199	true
cdnjs.cloudflare.com	104.16.19.94	true
platform-api.sharethis.com	13.32.22.126	true
cm.g.doubleclick.net	172.217.168.2	true
www.google.com	172.217.168.36	true
rtb-csync-itx4.smartadserver.com	185.86.139.113	true
tags.adsafety.net	139.162.147.24	true
ads.smartstream.tv	80.82.217.92	true
id.rlcdn.com	35.244.174.68	true
eu2-ice.360yield.com	3.66.41.54	true
match.adsrvr.org	52.223.40.198	true
match.contentexchange.me	46.19.11.36	true
star-mini.c10r.facebook.com	157.240.17.35	true
d2znr2yi078d75.cloudfront.net	65.9.71.23	true
match.prod.bidr.io	52.49.53.128	true
stats.l.doubleclick.net	142.250.145.156	true
uip.semasio.net	77.243.60.138	true
zix.com	199.30.234.249	true
www.zix.com	199.30.234.249	true
pixel.onaudience.com	146.59.148.16	true
vimeo.com	151.101.0.217	true
dsp.adfarm1.adition.com	85.114.159.93	true
redirect.frontend.weborama.fr	35.190.16.14	true
vimeo.map.fastly.net	151.101.0.217	true
googleads.g.doubleclick.net	142.250.203.98	true
secure-chsd.org	63.71.15.141	true
www.google.co.uk	142.250.203.99	true
ads4.admatic.com.tr	188.132.147.227	true
clients.l.google.com	172.217.168.78	true
istrp.adform.net	37.157.2.249	true
unpkg.com	104.16.122.175	true
prod-dub-beacon-1484770602.eu-west-1.elb.amazonaws.com	52.18.60.235	true
s.w.org	192.0.77.48	true
googlehosted.l.googleusercontent.com	172.217.168.65	true
aa-agkn-com-https-1893222849.eu-west-2.elb.amazonaws.com	35.176.195.187	true
alb-event-1454785217.us-east-1.elb.amazonaws.com	34.234.150.139	true
sync.1dmp.io	88.99.214.77	true
afe79c04fd8464db69f453355c110684-6aa967fe209738b1.elb.us-east-1.amazonaws.com	34.193.113.164	true
dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com	3.248.38.136	true
cm.smartstream.tv	80.85.85.173	true
cm.adsafety.net	80.82.217.100	true
dl7g9llrghqi1.cloudfront.net	143.204.215.88	true
insight.adsrvr.org	52.223.40.198	true
pop-edc2.mix.linkedin.com	108.174.11.85	true
ps.eyeota.net	3.124.210.90	true
scontent.xx.fbcdn.net	157.240.17.15	true
tag.demandbase.com	13.32.22.99	true
a2f905133e04e4d35ade9cd4751dd35b-4fd69d4b6621dbbd.elb.us-east-1.amazonaws.com	35.174.210.7	true
rtb-csync-tmk.smartadserver.com	199.187.193.193	true
idsync.rlcdn.com	35.244.174.68	true
fresnel.vimeocdn.com	34.120.202.204	true
pixel.tapad.com	35.227.248.159	true
s3-eu-west-1.amazonaws.com	52.218.96.10	true
accounts.google.com	216.58.215.237	true
www-google-analytics.l.google.com	142.250.203.110	true
ws.zoominfo.com	104.16.168.82	true
prod.ups-eu-central-1.aolp-ds-prd.aws.oath.cloud	18.184.201.8	true
a.audrte.com	34.206.192.53	true
www-googletagmanager.l.google.com	142.250.186.136	true
adstax-match-proxy.adrtx.net	52.211.146.69	true
dxedge-prod-lb-404808087.eu-central-1.elb.amazonaws.com	18.197.87.177	true
embeds.driftcdn.com	143.204.215.111	true
pug22000nf.pubmatic.com	185.64.189.110	true
partnerad.l.doubleclick.net	142.250.203.98	true
global.ib-ibi.com	64.58.232.179	true
s.ad.smaato.net	13.32.22.27	true
outspot2-ams.adx.opera.com	82.145.213.8	true
api.company-target.com	143.204.215.82	true
load-euw1.exelator.com	54.78.254.47	true
prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud	18.156.0.31	true
ib.anycast.adnxs.com	37.252.173.215	true
d3i42lyttuj6qr.cloudfront.net	65.9.71.36	true
vimeo-video.map.fastly.net	151.101.114.109	true
metrics.api.drift.com	unknown	unknown
id5-sync.com	unknown	unknown
i.vimeocdn.com	unknown	unknown
ads.stickyadstv.com	unknown	unknown
stats.g.doubleclick.net	unknown	unknown
clients2.googleusercontent.com	unknown	unknown
js.driftt.com	unknown	unknown
clients2.google.com	unknown	unknown
token.rubiconproject.com	unknown	unknown
loada.exelator.com	unknown	unknown
c1.adform.net	unknown	unknown
dmp.adform.net	unknown	unknown
connect.facebook.net	unknown	unknown
bootstrap.api.drift.com	unknown	unknown
pixel.mathtag.com	unknown	unknown
t.adx.opera.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://www.rchsd.org/health-safety/health-alerts/	false	high
https://player.vimeo.com/video/398648333?portrait=0&byline=0&title=0	false	high
https://player.vimeo.com/video/604357845?portrait=0&byline=0&title=0	false	high
https://www.rchsd.org/about-us/	false	high
https://player.vimeo.com/video/447845914?portrait=0&byline=0&title=0	false	high
https://zix.com/	false	unknown
https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1635910884675	false	high
https://pixel.mathtag.com/sync/iframe?mt_uuid=ec1d6181-9483-4f00-986f-209dd10e1e79&no_iframe=1&mt_adid=248701&source=mathtag	false	high
https://www.rchsd.org/contact-us/	false	high
https://www.rchsd.org/	false	high
https://js.driftt.com/core?embedId=65e63pi6mu5c&region=US&forceShow=false&skipCampaigns=false&sessionId=9a70df5a-b6b4-4e0a-a14c-9a57b6fcaf5a&sessionStarted=1635910895.08&campaignRefreshToken=ef7078d7-33ef-4af8-b357-ba59b7cf0368&hideController=false&pageLoadStartTime=1635910884675&mode=CHAT&driftEnableLog=false	false	high
https://c1.adform.net/imatch/pixels?uid=3680121232683396984&agencyId=6276&advertiserId=2105093&src=tp&rnd=139481	false	high
https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	false	unknown
https://a2.adform.net/serving/container/?pm=2463533&lid=100856282&ctype=0&media=0&PageName=Rady+Childrens+Hospital+Homepage&rnd=1844193108&cpref=&loc=https%3a%2f%2fwww.rchsd.org%2f	false	high

Phishing:

HTML body contains low number of good links

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: Number of links: 0
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: Number of links: 0

No HTML title found

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: HTML title missing
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: HTML title missing

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="author".. found
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="author".. found

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="copyright".. found
Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.203.98:443 -> 192.168.2.7:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:49963 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49961 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49960 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.157.138.20:443 -> 192.168.2.7:57263 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.120.56.129:443 -> 192.168.2.7:57267 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 77.243.60.138:443 -> 192.168.2.7:57269 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:57274 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57271 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 37.252.173.215:443 -> 192.168.2.7:57292 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.156.0.31:443 -> 192.168.2.7:57297 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57311 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57319 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57324 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.16.14:443 -> 192.168.2.7:58589 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.227.248.159:443 -> 192.168.2.7:58606 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 76.223.111.18:443 -> 192.168.2.7:58612 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 46.19.11.36:443 -> 192.168.2.7:58609 version: TLS 1.2

Networking:

Connects to several IPs in different countries

Source: unknown

Network traffic detected: IP country count 13

Source: unknown

DNS traffic detected: queries for: clients2.google.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57247
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57255
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57252
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 57255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58589
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57267
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58595
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58594
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 57244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57269
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57278
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57274
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57271
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57284
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58614 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57329
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57324
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57327
Source: unknown	Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58665
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58664
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 50209 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58667
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57222
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57223
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57226
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57227
Source: unknown	Network traffic detected: HTTP traffic on port 57233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57228
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57232
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57235
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57230
Source: unknown	Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 57310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57236
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58688
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57244
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57246
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57241
Source: unknown	Network traffic detected: HTTP traffic on port 57267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50215
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50218
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50217
Source: unknown	Network traffic detected: HTTP traffic on port 58606 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50212
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50202 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50214
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 50186 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50221
Source: unknown	Network traffic detected: HTTP traffic on port 57230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50220
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50223
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50222
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50224
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 57252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 50150 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 50224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57263 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58648 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57297
Source: unknown	Network traffic detected: HTTP traffic on port 57302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57292
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58605 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50070 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58616 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50212 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50204
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50207
Source: unknown	Network traffic detected: HTTP traffic on port 50196 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58649 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50209
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50201
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50202
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58589 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 58667 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50181
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 58609 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50186
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50188
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 57329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50190
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50192
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50195
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50204 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50172 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58633 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50197
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50196
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50199
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50198
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57226 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 57274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 50170 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019

Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232
Source: unknown	TCP traffic detected without corresponding DNS query: 51.195.5.232

Source: angular.js.1.dr	String found in binary or memory: http://angularjs.org
Source: angular.js.1.dr	String found in binary or memory: http://errors.angularjs.org/1.6.4-local
Source: pnacl_public_x86_64_pnacl_sz_nexe.1.dr	String found in binary or memory: http://llvm.org/):
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://tools.ietf.org/html/rfc1950
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
Source: manifest.json.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://accounts.google.com
Source: craw_window.js.1.dr	String found in binary or memory: https://accounts.google.com/MergeSession
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://ajax.googleapis.com
Source: manifest.json.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://apis.google.com
Source: mirroring_common.js.1.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: mirroring_common.js.1.dr	String found in binary or memory: https://castedumessaging-pa.googleapis.com/v1
Source: pnacl_public_x86_64_libcrt_platform_a.1.dr	String found in binary or memory: https://chromium.googlesource.com/a/native_client/pnacl-clang.git
Source: pnacl_public_x86_64_libcrt_platform_a.1.dr	String found in binary or memory: https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://clients2.google.com
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://clients2.google.com/cr/report
Source: manifest.json0.1.dr, manifest.json1.1.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://clients6.google.com
Source: f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://cm.g.doubleclick.net
Source: pnacl_public_x86_64_ld_nexe.1.dr	String found in binary or memory: https://code.google.com/p/nativeclient/issues/entry
Source: pnacl_public_x86_64_ld_nexe.1.dr	String found in binary or memory: https://code.google.com/p/nativeclient/issues/entry%s:
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://content-autofill.googleapis.com
Source: manifest.json.1.dr	String found in binary or memory: https://content.googleapis.com
Source: common.js.1.dr, mirroring_cast_streaming.js.1.dr	String found in binary or memory: https://crash.corp.google.com/samples?reportid=&q=
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://creativecommons.org/publicdomain/zero/1.0/.
Source: 6bc793fe-8b45-4e39-8be7-c1b73ab9686d.tmp.2.dr, 91adff0b-dae8-46e3-b259-1408c3267668.tmp.2.dr, 81845bdb-4489-46cb-8745-1eb6b4d95f84.tmp.2.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://dns.google
Source: mirroring_common.js.1.dr	String found in binary or memory: https://docs.google.com
Source: manifest.json.1.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: manifest.json.1.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: manifest.json.1.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: angular.js.1.dr	String found in binary or memory: https://github.com/angular/material
Source: craw_background.js.1.dr, craw_window.js.1.dr	String found in binary or memory: https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://github.com/madler/zlib/blob/master/zlib.h
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://hangouts.clients6.google.com
Source: manifest.json.1.dr	String found in binary or memory: https://hangouts.google.com/
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://hangouts.google.com/hangouts/_/logpref
Source: mirroring_common.js.1.dr	String found in binary or memory: https://meet.google.com
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://meetings.clients6.google.com
Source: mirroring_common.js.1.dr	String found in binary or memory: https://networktraversal.googleapis.com/v1alpha
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://ogs.google.com
Source: manifest.json0.1.dr, craw_window.js.1.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://preprod-hangouts-googleapis.sandbox.google.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://pubads.g.doubleclick.net
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://r4---sn-4g5e6nss.gvt1.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://redirector.gvt1.com
Source: manifest.json0.1.dr, craw_window.js.1.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: History Provider Cache.1.dr	String found in binary or memory: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://ssl.gstatic.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://stats.g.doubleclick.net
Source: messages.json27.1.dr, feedback.html.1.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json27.1.dr, feedback.html.1.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: craw_background.js.1.dr, craw_window.js.1.dr	String found in binary or memory: https://www-googleapis-staging.sandbox.google.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.google-analytics.com
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.google.co.uk
Source: manifest.json.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.google.com
Source: manifest.json0.1.dr	String found in binary or memory: https://www.google.com/
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/accounts/OAuthLogin?issueuberauth=1
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/images/dot2.gif
Source: craw_window.js.1.dr	String found in binary or memory: https://www.google.com/images/x2.gif
Source: craw_background.js.1.dr	String found in binary or memory: https://www.google.com/intl/en-US/chrome/blank.html
Source: mirroring_hangouts.js.1.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: feedback_script.js.1.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: manifest.json.1.dr	String found in binary or memory: https://www.google.com;
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: craw_background.js.1.dr, 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, craw_window.js.1.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: mirroring_common.js.1.dr	String found in binary or memory: https://www.googleapis.com/calendar/v3
Source: mirroring_common.js.1.dr	String found in binary or memory: https://www.googleapis.com/hangouts/v1
Source: f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: 7629fe09-8f4f-4857-a76e-7f840ed793fc.tmp.2.dr, 7a4d6bfd-86bb-4151-ada6-fdd982ecb833.tmp.2.dr, f52db802-6859-45b7-8928-df25f066b2bd.tmp.2.dr, f2ceeec2-35ec-46a5-9257-6fb7597513a9.tmp.2.dr	String found in binary or memory: https://www.gstatic.com
Source: common.js.1.dr	String found in binary or memory: https://www.gstatic.com/hangouts_echo_detector/release/%
Source: manifest.json.1.dr	String found in binary or memory: https://www.gstatic.com;
Source: History Provider Cache.1.dr	String found in binary or memory: https://www.rchsd.org/about-us/2

Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 45.223.138.206:443 -> 192.168.2.7:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.203.98:443 -> 192.168.2.7:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:49963 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49961 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.30.234.249:443 -> 192.168.2.7:49960 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.157.138.20:443 -> 192.168.2.7:57263 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.120.56.129:443 -> 192.168.2.7:57267 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 77.243.60.138:443 -> 192.168.2.7:57269 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.7:57274 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57271 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 37.252.173.215:443 -> 192.168.2.7:57292 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.156.0.31:443 -> 192.168.2.7:57297 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.78.254.47:443 -> 192.168.2.7:57311 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57319 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.223.40.198:443 -> 192.168.2.7:57324 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.16.14:443 -> 192.168.2.7:58589 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.227.248.159:443 -> 192.168.2.7:58606 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 76.223.111.18:443 -> 192.168.2.7:58612 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 46.19.11.36:443 -> 192.168.2.7:58609 version: TLS 1.2

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user~1\AppData\Local\Temp\e2524fb5-dae4-4dc3-89db-84c45e773e98.tmp

Jump to behavior

Source: classification engine

Classification label: clean1.win@38/210@161/79

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,1080383137737942703,10415530265892783596,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1920 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,1080383137737942703,10415530265892783596,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1920 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU

Joe Sandbox Cloud Basic: Detection: clean Score: 0

Perma Link

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-618204C3-984.pma

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

ID:	514100
Product:	CloudBasic
Start time:	20:39:48
Start date:	02.11.2021
Cookbook:	browseurl.jbs
System description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Architecture:	WINDOWS

Windows Analysis Report https://secure-chsd.org/s/e?m=ABBOdSX2hand3rhcsO3vIAYp&c=ABBYByWB0o0PvF3l0uo5dmRj&em=EAC%40pointloma%2eEDU

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing:

Compliance:

Networking:

System Summary:

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs