Windows Analysis Report
https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj

Overview

General Information

Sample URL:	https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj
Analysis ID:	1501430
Infos:

Detection

Score:	0
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

No high impact signatures.

Classification

Signatures

There are no high impact signatures.

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49778 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.css HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-pre-app-modules-synchronous.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/cloud-ui/app-shell.9729de5c.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-static/react.f67761e0a08ead174e25.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-styled-components-static/styled-components.a226967a2b27915f0a7f.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/global-navigation-static/global-navigation.5cc6818c1a7e880293c7.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5fc29351.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f3123e63.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.54e9673acff233e630af.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-asset-processing.worker.57b12da83ed170e0f876.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5a92babc56.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a28bfd0e90dd57e220a4.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/sidebar/sidebar.c041909dcb5df013780e.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/d0d9132f-a6e0-4094-81da-798f2d0285d2/d0d9132f-a6e0-4094-81da-798f2d0285d2.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://nicolelynam513779.invisionapp.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-async.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/d0d9132f-a6e0-4094-81da-798f2d0285d2/d0d9132f-a6e0-4094-81da-798f2d0285d2.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-static/react.f67761e0a08ead174e25.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/cloud-ui/app-shell.9729de5c.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-pre-app-modules-synchronous.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://nicolelynam513779.invisionapp.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-styled-components-static/styled-components.a226967a2b27915f0a7f.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /global/favicons/default/favicon.ico HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/6.37.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/global-navigation-static/global-navigation.5cc6818c1a7e880293c7.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.54e9673acff233e630af.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a28bfd0e90dd57e220a4.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5fc29351.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/sidebar/sidebar.c041909dcb5df013780e.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5a92babc56.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-async.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f3123e63.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beams/service-worker.js HTTP/1.1Host: js.pusher.comConnection: keep-aliveCache-Control: max-age=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/favicons/default/favicon.ico HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: nicolelynam513779.invisionapp.com
Source: global traffic	DNS traffic detected: DNS query: static.invisionapp-cdn.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: js.pusher.com

Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: http://jaywcjlove.github.io/hotkeys
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: http://www.jacklmoore.com/autosize
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/googleData.json
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iab2Data.json
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iabData.json
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://cdn.pendo.io/agent/static/
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cookies-data.onetrust.io/bannersdk/v1/domaingroupcheck
Source: chromecache_116.2.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
Source: chromecache_114.2.dr	String found in binary or memory: https://github.com/facebook/regenerator/issues/274
Source: chromecache_138.2.dr, chromecache_142.2.dr	String found in binary or memory: https://help.invisionapp.com/hc/en-us/requests/new
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://invisionapp.atlassian.net/browse/FH-195
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: https://lea.verou.me
Source: chromecache_98.2.dr	String found in binary or memory: https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: https://opensource.org/licenses/MIT
Source: chromecache_114.2.dr	String found in binary or memory: https://people.mozilla.org/~jorendorff/es6-draft.html#sec-generatorresume
Source: chromecache_98.2.dr	String found in binary or memory: https://s3.amazonaws.com/invision-global-static/production/spa/cloud-ui/global-service-worker-loader
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://segment.com/docs/destinations/amplitude/#setting-event-level-groups-via-track-
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/apple-touch-icon.png
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/favicon-16x16.png
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/favicon-32x32.png
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/favicon.ico
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/AktivGroteskVF_Italics_W_Wght.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/AktivGroteskVF_W_Wght.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-Eina03-SemiBold.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-Eina03-SemiBold.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Book.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Book.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-BookItalic.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-BookItalic.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Demi.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Demi.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-DemiItalic.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-DemiItalic.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Medium.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Medium.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-MediumItalic.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-MediumItalic.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/js/cloud-global-async.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/js/cloud-global-pre-app-modules-synchronous.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/cloud-ui/app-shell-legacy.99fc193a.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/cloud-ui/app-shell.9729de5c.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/cloud-ui/polyfills.0ca8b6ae.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.5
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-asset-processing.worke
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f31
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5f
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/global-navigation-static/global-navigation.5cc6818c1a7e880293
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.css
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-react-static/react.f67761e0a08ead174e25.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-styled-components-static/styled-components.a226967a2b2791
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/sidebar/sidebar.c041909dcb5df013780e.js
Source: chromecache_138.2.dr, chromecache_142.2.dr	String found in binary or memory: https://support.invisionapp.com
Source: chromecache_138.2.dr, chromecache_142.2.dr	String found in binary or memory: https://support.invisionapp.com/hc/en-us/articles/115004118683
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://support.pendo.io/hc/en-us/articles/360032201071-Client-side-data-installation
Source: chromecache_98.2.dr	String found in binary or memory: https://ui-gateway-production.invisionapp-cdn.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49778 version: TLS 1.2

Source: classification engine

Classification label: clean0.win@16/78@28/10

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2000,i,9856245143333011369,530521192992549920,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2000,i,9856245143333011369,530521192992549920,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.18.87.42	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.186.36	www.google.com	United States	15169	GOOGLEUS	false
104.17.154.91	static.invisionapp-cdn.com	United States	13335	CLOUDFLARENETUS	false
104.17.155.91	unknown	United States	13335	CLOUDFLARENETUS	false
108.156.64.41	d3dy5gmtp8yhk7.cloudfront.net	United States	16509	AMAZON-02US	false
172.64.155.119	geolocation.onetrust.com	United States	13335	CLOUDFLARENETUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
104.18.32.137	unknown	United States	13335	CLOUDFLARENETUS	false
104.18.86.42	cdn.cookielaw.org	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
k256-all.gslb.ksyuncdn.com	118.112.233.1	true
www.google.com	142.250.186.36	true
d3dy5gmtp8yhk7.cloudfront.net	108.156.64.41	true
cdn.cookielaw.org	104.18.86.42	true
geolocation.onetrust.com	172.64.155.119	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
static.invisionapp-cdn.com	104.17.154.91	true
nicolelynam513779.invisionapp.com	unknown	unknown
js.pusher.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://static.invisionapp-cdn.com/spa/sidebar/sidebar.c041909dcb5df013780e.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-react-static/react.f67761e0a08ead174e25.js	false	Avira URL Cloud: safe	unknown
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location	false	URL Reputation: safe	unknown
https://static.invisionapp-cdn.com/global/js/cloud-global-async.js	false	Avira URL Cloud: safe	unknown
https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj	false		unknown
https://static.invisionapp-cdn.com/global/favicons/default/favicon.ico	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/global/js/cloud-global-pre-app-modules-synchronous.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.54e9673acff233e630af.worker.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a28bfd0e90dd57e220a4.worker.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-styled-components-static/styled-components.a226967a2b27915f0a7f.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.css	false	Avira URL Cloud: safe	unknown
https://js.pusher.com/beams/service-worker.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-asset-processing.worker.57b12da83ed170e0f876.worker.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/global-navigation-static/global-navigation.5cc6818c1a7e880293c7.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5a92babc56.worker.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5fc29351.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/cloud-ui/app-shell.9729de5c.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js	false	Avira URL Cloud: safe	unknown
https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f3123e63.js	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/consent/d0d9132f-a6e0-4094-81da-798f2d0285d2/d0d9132f-a6e0-4094-81da-798f2d0285d2.json	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js	false	URL Reputation: safe	unknown
https://cdn.cookielaw.org/scripttemplates/6.37.0/otBannerSdk.js	false	Avira URL Cloud: safe	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 100	ASCII text, with very long lines (21229)	692A3714ECE78CEE4017020F5B18A203	56333F0F458776357A95BA474307C271DEC92280	50377D1D3E7DCB2C8298FEB8D2505099DF1957E3700A358B993B4CF443FD36E8
Chrome Cache Entry: 101	Unicode text, UTF-8 text, with very long lines (65255)	2DEDFC70871459C76347418CBCAE0D59	989ECBE8F4D1D813D00217273892AE002F72AF8B	9E60759843EB6C2D317417F9D36B4E16E4071F70B7875F5A6A2437FA939F7BB7
Chrome Cache Entry: 102	ASCII text, with very long lines (37185)	C290C924CC4E362F916CA0A30586AAC5	5A89DD089E6A766D3F64968136B6431DB2B544F8	734E1830E7AEB8332F773D2CF6C1B0BCEA2CA10639192D7F13EC29AD29785FE1
Chrome Cache Entry: 103	ASCII text, with no line terminators	1AE6B27EBA211F4CFCD99B904DA88BB7	53CA38F083C4A21F2EDA633EC304CB4582EDEDA2	961635B4E9661208EC118D285B3AC1DBF9F3CC96CDDC97F30E55CD2C6566448C
Chrome Cache Entry: 104	ASCII text, with very long lines (6194)	D0E8A2D6B91935410B1E38680F6809FE	F2DAE9EF6318DC7E3149045BC83C220469B8F3AF	04FD1FF7B1920816FAB0E6BA827257BA589D870E4C3F2E9507FDF0FE2D6D7228
Chrome Cache Entry: 105	ASCII text, with very long lines (588)	1F56A5E550F109E10C1C4CF5658FE27F	7AE55416CC69F0EC18195F915E0F1A7F973CBCD1	769F34AC9BED0270B6F4F99BA65672E9E09685B9E81FDE7915CA5A7E2A1256DA
Chrome Cache Entry: 106	ASCII text, with very long lines (37185)	C290C924CC4E362F916CA0A30586AAC5	5A89DD089E6A766D3F64968136B6431DB2B544F8	734E1830E7AEB8332F773D2CF6C1B0BCEA2CA10639192D7F13EC29AD29785FE1
Chrome Cache Entry: 107	Unicode text, UTF-8 text, with very long lines (46201)	1B592B26CD6AD8ECD1BDC2AD2C4225F1	944111E6B2AE109B637C3B93880600C9069F2099	F09E34833CB121302C4499155662818EC419DE85B081718079659174309C8EEE
Chrome Cache Entry: 108	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	8070EE92929C89B97E7EE01F7D0FD22F	CF543642B265AB670956A643C530A384DE55325B	44764771D5ADAE5FD8A5D2A14A83E9EB58060CB6AD3923275872286B4C4A985B
Chrome Cache Entry: 109	Unicode text, UTF-8 text, with very long lines (51066)	E40DE2282287616AC7A57200C7A88AE1	92AE8361D73D991DFF37108DC5DCD1D6558DCCC2	282A1D787EA2B2E8341CC8D1B22F1EF66188D7D8487489E6E7E7FA5308C1CA57
Chrome Cache Entry: 110	ASCII text, with very long lines (65536), with no line terminators	73500E3156DB6CE9305B7B260623E711	2D05B9C32770CC893D91DD240CBB53ED7D0DAFBE	DCB3207E8021C9E693911B22B843612E49B3BD0DD57962AC6677C10DA3F94007
Chrome Cache Entry: 111	ASCII text, with very long lines (65536), with no line terminators	F67BD1C06DA0F3F51BB892DCF740C9F4	18AB796D6367DD2C9EA07F073E41AEEA963BF45E	BF14BE768CC3E0C31E046BC15481A007ECC5C25855503929C2B617BB0DE8CD73
Chrome Cache Entry: 112	Unicode text, UTF-8 text, with very long lines (65255)	2DEDFC70871459C76347418CBCAE0D59	989ECBE8F4D1D813D00217273892AE002F72AF8B	9E60759843EB6C2D317417F9D36B4E16E4071F70B7875F5A6A2437FA939F7BB7
Chrome Cache Entry: 113	ASCII text, with very long lines (64000)	C48A333409A05BCE0D9C1305D0507248	0DB716D7D1814A6101763AB5E91BA926D472D863	AB419986D7288FDDF3E5CB875CEAEE2E14FD529AC2843CF2D89AB29E5579F095
Chrome Cache Entry: 114	ASCII text	AAC77D45D4AEC3255EAC0ABD297CA4FB	690F6E3B474C8E69790FBE1F7AFBA37F69722443	CAC50CA68377742D6BA888AB6715FF74A493B1F8BDE06116F39169529244FCE2
Chrome Cache Entry: 115	Unicode text, UTF-8 text, with very long lines (65535), with no line terminators	F74CA06C68A5DB3BEB32012A83334649	CA28ACEC139A57516DBF40F81F456E672140097D	332723FAB8E5871B5222F3AE36E2FF551E056562B829B599A3CED9E089F42DC8
Chrome Cache Entry: 116	ASCII text, with very long lines (64000)	C48A333409A05BCE0D9C1305D0507248	0DB716D7D1814A6101763AB5E91BA926D472D863	AB419986D7288FDDF3E5CB875CEAEE2E14FD529AC2843CF2D89AB29E5579F095
Chrome Cache Entry: 117	JSON data	B514F66B0066369444699514CF54864F	E92FE8D3863E8F1A772788E05D3F01E89E3771E7	55C8755FE1F7441BC4ACCBE242E14708C00313E1A9A3619E78E87DD66B2F570D
Chrome Cache Entry: 118	JSON data	B04CD3F8043EF04F417D4B0E4BCBBC03	88F259A4AE3045409B3657E7D7A791D321BA9DCE	59E58524340CD7AD353BE010374B124C242FDDE10A0ED41047FE2FD4BB9E5A2E
Chrome Cache Entry: 119	JSON data	B514F66B0066369444699514CF54864F	E92FE8D3863E8F1A772788E05D3F01E89E3771E7	55C8755FE1F7441BC4ACCBE242E14708C00313E1A9A3619E78E87DD66B2F570D
Chrome Cache Entry: 120	Unicode text, UTF-8 text, with very long lines (65532), with no line terminators	00C9D6F9EE185413D8E2AA3F5186C438	7C7D117ABBC6A62495B88BC856E28C6C02679044	F7FE17D40A87B14DF87EB47EF6331366FE5635C1FA5AF00645BE5260CF7CAE1F
Chrome Cache Entry: 121	Unicode text, UTF-8 text, with very long lines (65532), with no line terminators	00C9D6F9EE185413D8E2AA3F5186C438	7C7D117ABBC6A62495B88BC856E28C6C02679044	F7FE17D40A87B14DF87EB47EF6331366FE5635C1FA5AF00645BE5260CF7CAE1F
Chrome Cache Entry: 122	Unicode text, UTF-8 text, with very long lines (65418)	90C4805BD49C81AED94059ED39154439	22B0984147B7BFEE5A5FFF0DD6EBAAB32C70DA2F	6267F6DEA2125CE011F4E6B268E769E19CE7E53DA520D3E61D709C9CC35A1C27
Chrome Cache Entry: 123	ASCII text, with very long lines (2674)	DA80AA5CB0E5283AA9A34B177707A85B	390E1845D24DB8D53ED4F00CD783EAB35B080AFD	A3A374B718AA341C6C3A4918432C59291E2C212028023ADC5D3EFF544BC7D7B4
Chrome Cache Entry: 124	ASCII text, with very long lines (37739)	ED858286AFD228A45C1A561E9A7FBCE8	CAEB52252EDBABE237916E983EFF38562BF516E6	5ABEED989797ABDEE0791B68CBEDD2315EE49C853C9A1C2757CA4C43D540CCB0
Chrome Cache Entry: 125	ASCII text, with very long lines (65434)	9BA0B01C20FBF8CFDDD8AFB4702DFC5C	7EC8AA6EF1B3D14AC6AFFBD10817A9340B0B846D	0B3D5E1E789389C44DDD5C7BE85AEF9E2C04285C14C9B5F1C56BEC4EC90621D5
Chrome Cache Entry: 126	Unicode text, UTF-8 text, with very long lines (65418)	4DF93FA3A7D8FFDC83077670CC4A8E2C	215C701448095DFC05E1711378AFBE04007AA70D	427B45FA7F46B26AA59DB236B82A768B2D392BA2EC587D89D385F92A5642BE67
Chrome Cache Entry: 127	Unicode text, UTF-8 text, with very long lines (65405)	A2EDCCF22167284773F43AB6694A5EDF	2A1BCB6BA022CE075A02D9F6F6F33E544D5C1E33	1DFCFE89DE4AB77A0C158263EA002EDE7E0B2B961E55CD9100A4FD91C5356304
Chrome Cache Entry: 128	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	578DE7E0755995C8954A3B13F62EE8C7	CCAE5037B9E3BFB2C602917B77DA585F90CBA45B	9E5BB998CB5D048B40CCD5501ABFC4AF9F12225C288FCB142AA1E8E687A0AE98
Chrome Cache Entry: 129	ASCII text, with very long lines (65434)	9BA0B01C20FBF8CFDDD8AFB4702DFC5C	7EC8AA6EF1B3D14AC6AFFBD10817A9340B0B846D	0B3D5E1E789389C44DDD5C7BE85AEF9E2C04285C14C9B5F1C56BEC4EC90621D5
Chrome Cache Entry: 130	Unicode text, UTF-8 text, with very long lines (65438)	8FED1B9F8EDCD5D1930A9D19CF0322EB	8CE4A22CBE20C2FA99486B427F05FE8EA4A96CD8	676C996DEA0F4060DE5D0E9EC80E449ABB9131AC9C923C2AA3B488967C75529C
Chrome Cache Entry: 131	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	F3BF5D60ED0FA58D8A262D12A96462EA	12A77A551C1FDBE837CC3929D5A816359F1BD05C	6EB2ADC45DC83E3D98FE625204CAAA4E910E68BBA8599A4A59A7D07A862FD224
Chrome Cache Entry: 132	Unicode text, UTF-8 text, with very long lines (65438)	8FED1B9F8EDCD5D1930A9D19CF0322EB	8CE4A22CBE20C2FA99486B427F05FE8EA4A96CD8	676C996DEA0F4060DE5D0E9EC80E449ABB9131AC9C923C2AA3B488967C75529C
Chrome Cache Entry: 133	ASCII text, with very long lines (9177)	8CD73E6095E092DBA908ECECB2FBA1F6	C460E8E9AEDB585DF3772CDE9584EE1A7110BE4D	81A72D0C631C40B3F3281677170B07F5C1592B2CB3B593D41818AFB3CA4FB19D
Chrome Cache Entry: 134	ASCII text, with very long lines (37739)	ED858286AFD228A45C1A561E9A7FBCE8	CAEB52252EDBABE237916E983EFF38562BF516E6	5ABEED989797ABDEE0791B68CBEDD2315EE49C853C9A1C2757CA4C43D540CCB0
Chrome Cache Entry: 135	ASCII text, with very long lines (6194)	D0E8A2D6B91935410B1E38680F6809FE	F2DAE9EF6318DC7E3149045BC83C220469B8F3AF	04FD1FF7B1920816FAB0E6BA827257BA589D870E4C3F2E9507FDF0FE2D6D7228
Chrome Cache Entry: 136	Unicode text, UTF-8 text, with very long lines (65418)	4DF93FA3A7D8FFDC83077670CC4A8E2C	215C701448095DFC05E1711378AFBE04007AA70D	427B45FA7F46B26AA59DB236B82A768B2D392BA2EC587D89D385F92A5642BE67
Chrome Cache Entry: 137	ASCII text, with very long lines (65536), with no line terminators	73500E3156DB6CE9305B7B260623E711	2D05B9C32770CC893D91DD240CBB53ED7D0DAFBE	DCB3207E8021C9E693911B22B843612E49B3BD0DD57962AC6677C10DA3F94007
Chrome Cache Entry: 138	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	1FAA039BE9B92BBB1D4BF0F8CA8348C8	8303C2201C303BAD3B1B9E2D89583F54940B9D95	871B3F38FAD4652DF17967EA63AAB84D04D7F946025D3DEA16378563A9BAF9AB
Chrome Cache Entry: 139	ASCII text, with very long lines (588)	1F56A5E550F109E10C1C4CF5658FE27F	7AE55416CC69F0EC18195F915E0F1A7F973CBCD1	769F34AC9BED0270B6F4F99BA65672E9E09685B9E81FDE7915CA5A7E2A1256DA
Chrome Cache Entry: 140	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	F3BF5D60ED0FA58D8A262D12A96462EA	12A77A551C1FDBE837CC3929D5A816359F1BD05C	6EB2ADC45DC83E3D98FE625204CAAA4E910E68BBA8599A4A59A7D07A862FD224
Chrome Cache Entry: 141	Unicode text, UTF-8 text, with very long lines (28477)	062BD743D44FD7F9F3DC9E4F1AE87F61	480E3D5D614FFB14EE874E53530A171C7338E594	FD2AB0FE89D6EA3454565C9833A261829846395E8D2FA411719A691B33EE5325
Chrome Cache Entry: 142	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	1FAA039BE9B92BBB1D4BF0F8CA8348C8	8303C2201C303BAD3B1B9E2D89583F54940B9D95	871B3F38FAD4652DF17967EA63AAB84D04D7F946025D3DEA16378563A9BAF9AB
Chrome Cache Entry: 143	ASCII text, with very long lines (9177)	8CD73E6095E092DBA908ECECB2FBA1F6	C460E8E9AEDB585DF3772CDE9584EE1A7110BE4D	81A72D0C631C40B3F3281677170B07F5C1592B2CB3B593D41818AFB3CA4FB19D
Chrome Cache Entry: 144	ASCII text, with very long lines (2674)	DA80AA5CB0E5283AA9A34B177707A85B	390E1845D24DB8D53ED4F00CD783EAB35B080AFD	A3A374B718AA341C6C3A4918432C59291E2C212028023ADC5D3EFF544BC7D7B4
Chrome Cache Entry: 95	ASCII text, with very long lines (21229)	692A3714ECE78CEE4017020F5B18A203	56333F0F458776357A95BA474307C271DEC92280	50377D1D3E7DCB2C8298FEB8D2505099DF1957E3700A358B993B4CF443FD36E8
Chrome Cache Entry: 96	Unicode text, UTF-8 text, with very long lines (65535), with no line terminators	F74CA06C68A5DB3BEB32012A83334649	CA28ACEC139A57516DBF40F81F456E672140097D	332723FAB8E5871B5222F3AE36E2FF551E056562B829B599A3CED9E089F42DC8
Chrome Cache Entry: 97	Unicode text, UTF-8 text, with very long lines (46201)	1B592B26CD6AD8ECD1BDC2AD2C4225F1	944111E6B2AE109B637C3B93880600C9069F2099	F09E34833CB121302C4499155662818EC419DE85B081718079659174309C8EEE
Chrome Cache Entry: 98	HTML document, ASCII text, with very long lines (59670)	AADBE1B79B754EF1142822A3C7DEE152	DBB6EE971196977CA7082A05EA3BDE3281C0015E	931269D07DCF8DD3A2BD82467288EB35E21D7D4E239C0F4E342E3EB55BF182ED
Chrome Cache Entry: 99	Unicode text, UTF-8 text, with very long lines (28477)	5508E07D97D7EA6E5004FEAC742A269D	72F2927E4C4AEE1272E5EC66C62EE4D7B371CFED	453696BD3476373ABA0DD33CD7409A88E913160005E385FD70F04FF9B439322B

There are no high impact signatures.

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49778 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.css HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-pre-app-modules-synchronous.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/cloud-ui/app-shell.9729de5c.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-static/react.f67761e0a08ead174e25.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-styled-components-static/styled-components.a226967a2b27915f0a7f.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/global-navigation-static/global-navigation.5cc6818c1a7e880293c7.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5fc29351.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f3123e63.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.54e9673acff233e630af.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-asset-processing.worker.57b12da83ed170e0f876.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5a92babc56.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a28bfd0e90dd57e220a4.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/sidebar/sidebar.c041909dcb5df013780e.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/d0d9132f-a6e0-4094-81da-798f2d0285d2/d0d9132f-a6e0-4094-81da-798f2d0285d2.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://nicolelynam513779.invisionapp.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-async.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nicolelynam513779.invisionapp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/d0d9132f-a6e0-4094-81da-798f2d0285d2/d0d9132f-a6e0-4094-81da-798f2d0285d2.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-static/react.f67761e0a08ead174e25.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/cloud-ui/app-shell.9729de5c.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-pre-app-modules-synchronous.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://nicolelynam513779.invisionapp.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-styled-components-static/styled-components.a226967a2b27915f0a7f.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /global/favicons/default/favicon.ico HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/6.37.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/global-navigation-static/global-navigation.5cc6818c1a7e880293c7.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.54e9673acff233e630af.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a28bfd0e90dd57e220a4.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5fc29351.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/sidebar/sidebar.c041909dcb5df013780e.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5a92babc56.worker.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/js/cloud-global-async.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f3123e63.js HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beams/service-worker.js HTTP/1.1Host: js.pusher.comConnection: keep-aliveCache-Control: max-age=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nicolelynam513779.invisionapp.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /global/favicons/default/favicon.ico HTTP/1.1Host: static.invisionapp-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: nicolelynam513779.invisionapp.com
Source: global traffic	DNS traffic detected: DNS query: static.invisionapp-cdn.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: js.pusher.com

Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: http://jaywcjlove.github.io/hotkeys
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: http://www.jacklmoore.com/autosize
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/googleData.json
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iab2Data.json
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iabData.json
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://cdn.pendo.io/agent/static/
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://cookies-data.onetrust.io/bannersdk/v1/domaingroupcheck
Source: chromecache_116.2.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: chromecache_117.2.dr, chromecache_119.2.dr	String found in binary or memory: https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
Source: chromecache_114.2.dr	String found in binary or memory: https://github.com/facebook/regenerator/issues/274
Source: chromecache_138.2.dr, chromecache_142.2.dr	String found in binary or memory: https://help.invisionapp.com/hc/en-us/requests/new
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://invisionapp.atlassian.net/browse/FH-195
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: https://lea.verou.me
Source: chromecache_98.2.dr	String found in binary or memory: https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: https://opensource.org/licenses/MIT
Source: chromecache_114.2.dr	String found in binary or memory: https://people.mozilla.org/~jorendorff/es6-draft.html#sec-generatorresume
Source: chromecache_98.2.dr	String found in binary or memory: https://s3.amazonaws.com/invision-global-static/production/spa/cloud-ui/global-service-worker-loader
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://segment.com/docs/destinations/amplitude/#setting-event-level-groups-via-track-
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/apple-touch-icon.png
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/favicon-16x16.png
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/favicon-32x32.png
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/favicons/default/favicon.ico
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/AktivGroteskVF_Italics_W_Wght.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/AktivGroteskVF_W_Wght.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-Eina03-SemiBold.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-Eina03-SemiBold.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Book.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Book.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-BookItalic.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-BookItalic.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Demi.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Demi.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-DemiItalic.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-DemiItalic.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Medium.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-Medium.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-MediumItalic.woff
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/fonts/Inv-MaisonNeue-MediumItalic.woff2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/js/cloud-global-async.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/global/js/cloud-global-pre-app-modules-synchronous.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/cloud-ui/app-shell-legacy.99fc193a.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/cloud-ui/app-shell.9729de5c.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/cloud-ui/polyfills.0ca8b6ae.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-asset-loading.worker.5
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-asset-processing.worke
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-bundle.1a632b09d6f4f31
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-pdf.worker.3a179d139c5
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-process-line.worker.a2
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/freehand-web-v7-static/freehand-web-v7-vendors.0410ce90753f5f
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/global-navigation-static/global-navigation.5cc6818c1a7e880293
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/invproto-fe-static/invproto-fe.a25731557cffe53d7576.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-bugsnag-static/bugsnag.108782ef33631fee5b7a.js
Source: chromecache_141.2.dr, chromecache_99.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.css
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-helios-one-web-static/helios-one.16ef689b76ede057e610.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-lodash-static/lodash.f0ad10da7d1f80112d7a.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-react-dom-static/react-dom.cfce0b15c12860642616.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-react-static/react.f67761e0a08ead174e25.js
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/rpr-styled-components-static/styled-components.a226967a2b2791
Source: chromecache_98.2.dr	String found in binary or memory: https://static.invisionapp-cdn.com/spa/sidebar/sidebar.c041909dcb5df013780e.js
Source: chromecache_138.2.dr, chromecache_142.2.dr	String found in binary or memory: https://support.invisionapp.com
Source: chromecache_138.2.dr, chromecache_142.2.dr	String found in binary or memory: https://support.invisionapp.com/hc/en-us/articles/115004118683
Source: chromecache_139.2.dr, chromecache_105.2.dr	String found in binary or memory: https://support.pendo.io/hc/en-us/articles/360032201071-Client-side-data-installation
Source: chromecache_98.2.dr	String found in binary or memory: https://ui-gateway-production.invisionapp-cdn.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49778 version: TLS 1.2

Source: classification engine

Classification label: clean0.win@16/78@28/10

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2000,i,9856245143333011369,530521192992549920,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2000,i,9856245143333011369,530521192992549920,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1501430
Product:	CloudBasic
Start time:	22:19:25
Start date:	29.08.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://nicolelynam513779.invisionapp.com/freehand/KE-Design-LLC-24-22144---3LtuK81gj