Edit tour
Windows
Analysis Report
file.exe
Overview
General Information
Detection
Score: | 68 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Multi AV Scanner detection for submitted file
AI detected suspicious sample
Binary is likely a compiled AutoIt script file
Found API chain indicative of debugger detection
Found API chain indicative of sandbox detection
Machine Learning detection for sample
Contains functionality for read data from the clipboard
Contains functionality to block mouse and keyboard input (often used to hinder debugging)
Contains functionality to check if a debugger is running (IsDebuggerPresent)
Contains functionality to check if a window is minimized (may be used to check if an application is visible)
Contains functionality to communicate with device drivers
Contains functionality to dynamically determine API calls
Contains functionality to execute programs as a different user
Contains functionality to launch a process as a different user
Contains functionality to launch a program with higher privileges
Contains functionality to modify clipboard data
Contains functionality to open a port and listen for incoming connection (possibly a backdoor)
Contains functionality to query CPU information (cpuid)
Contains functionality to read the PEB
Contains functionality to read the clipboard data
Contains functionality to retrieve information about pressed keystrokes
Contains functionality to shutdown / reboot the system
Contains functionality to simulate keystroke presses
Contains functionality to simulate mouse events
Contains functionality which may be used to detect a debugger (GetProcessHeap)
Creates a process in suspended mode (likely to inject code)
Detected non-DNS traffic on DNS port
Detected potential crypto function
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)
Found large amount of non-executed APIs
Found potential string decryption / allocating functions
IP address seen in connection with other malware
Installs a raw input device (often for capturing keystrokes)
JA3 SSL client fingerprint seen in connection with other malware
May sleep (evasive loops) to hinder dynamic analysis
OS version to string mapping found (often used in BOTs)
Potential key logger detected (key state polling based)
Sample execution stops while process was sleeping (likely an evasion)
Sample file is different than original file name gathered from version info
Sleep loop found (likely to delay execution)
Uses 32bit PE files
Uses code obfuscation techniques (call, push, ret)
Uses insecure TLS / SSL version for HTTPS connection
Classification
- System is w10x64
- file.exe (PID: 6232 cmdline:
"C:\Users\ user\Deskt op\file.ex e" MD5: 9FCC1C119EAA840E094979DB5BE1A570) - chrome.exe (PID: 2128 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ki osk https: //youtube. com/accoun t?=https:/ /accounts. google.com /v3/signin /challenge /pwd MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 4460 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2416 --fi eld-trial- handle=225 6,i,181977 4373061227 252,109511 1288392500 6493,26214 4 /prefetc h:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 8016 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= audio.mojo m.AudioSer vice --lan g=en-US -- service-sa ndbox-type =audio --m ojo-platfo rm-channel -handle=56 32 --field -trial-han dle=2256,i ,181977437 3061227252 ,109511128 8392500649 3,262144 / prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 8024 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= video_capt ure.mojom. VideoCaptu reService --lang=en- US --servi ce-sandbox -type=none --mojo-pl atform-cha nnel-handl e=5376 --f ield-trial -handle=22 56,i,18197 7437306122 7252,10951 1128839250 06493,2621 44 /prefet ch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- cleanup
⊘No configs have been found
⊘No yara matches
⊘No Sigma rule has matched
⊘No Suricata rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | ReversingLabs: |
Source: | Integrated Neural Analysis Model: |
Source: | Joe Sandbox ML: |
Source: | Static PE information: |
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Code function: | 0_2_0008DBBE | |
Source: | Code function: | 0_2_0005C2A2 | |
Source: | Code function: | 0_2_000968EE | |
Source: | Code function: | 0_2_0009698F | |
Source: | Code function: | 0_2_0008D076 | |
Source: | Code function: | 0_2_0008D3A9 | |
Source: | Code function: | 0_2_00099642 | |
Source: | Code function: | 0_2_0009979D | |
Source: | Code function: | 0_2_00099B2B | |
Source: | Code function: | 0_2_00095C97 |
Source: | TCP traffic: |
Source: | IP Address: |
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: |
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | Code function: | 0_2_0009CE44 |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Code function: | 0_2_0009EAFF |
Source: | Code function: | 0_2_0009ED6A |
Source: | Code function: | 0_2_0009EAFF |
Source: | Code function: | 0_2_0008AA57 |
Source: | Binary or memory string: | memstr_d4e48671-4 |
Source: | Code function: | 0_2_000B9576 |
System Summary |
---|
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | memstr_604178ad-e | |
Source: | String found in binary or memory: | memstr_4e8e743c-4 | |
Source: | String found in binary or memory: | memstr_bd196ac0-7 | |
Source: | String found in binary or memory: | memstr_6964bc2f-3 |
Source: | Code function: | 0_2_0008D5EB |
Source: | Code function: | 0_2_00081201 |
Source: | Code function: | 0_2_0008E8F6 |
Source: | Code function: | 0_2_00092046 | |
Source: | Code function: | 0_2_00028060 | |
Source: | Code function: | 0_2_00088298 | |
Source: | Code function: | 0_2_0005E4FF | |
Source: | Code function: | 0_2_0005676B | |
Source: | Code function: | 0_2_000B4873 | |
Source: | Code function: | 0_2_0004CAA0 | |
Source: | Code function: | 0_2_0002CAF0 | |
Source: | Code function: | 0_2_0003CC39 | |
Source: | Code function: | 0_2_00056DD9 | |
Source: | Code function: | 0_2_0003B119 | |
Source: | Code function: | 0_2_000291C0 | |
Source: | Code function: | 0_2_00041394 | |
Source: | Code function: | 0_2_0004781B | |
Source: | Code function: | 0_2_00027920 | |
Source: | Code function: | 0_2_0003997D | |
Source: | Code function: | 0_2_00047A4A | |
Source: | Code function: | 0_2_00047CA7 | |
Source: | Code function: | 0_2_00073CD2 | |
Source: | Code function: | 0_2_000ABE44 | |
Source: | Code function: | 0_2_00059EEE |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Source: | Static PE information: |
Source: | Classification label: |
Source: | Code function: | 0_2_000937B5 |
Source: | Code function: | 0_2_000810BF | |
Source: | Code function: | 0_2_000816C3 |
Source: | Code function: | 0_2_000951CD |
Source: | Code function: | 0_2_000AA67C |
Source: | Code function: | 0_2_0009648E |
Source: | Code function: | 0_2_000242A2 |
Source: | File created: | Jump to behavior |
Source: | Static PE information: |
Source: | File read: | Jump to behavior |
Source: | Key opened: | Jump to behavior |
Source: | ReversingLabs: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior |
Source: | Key value queried: | Jump to behavior |
Source: | Window detected: |
Source: | Static file information: |
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: |
Source: | Static PE information: |
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: |
Source: | Code function: | 0_2_000242DE |
Source: | Code function: | 0_2_00040A89 |
Source: | Code function: | 0_2_0003F98E | |
Source: | Code function: | 0_2_000B1C41 |
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior |
Malware Analysis System Evasion |
---|
Source: | Sandbox detection routine: | graph_0-96740 |
Source: | Window / User API: | Jump to behavior |
Source: | API coverage: |
Source: | Thread sleep count: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior |
Source: | Last function: | ||
Source: | Last function: |
Source: | Thread sleep count: | Jump to behavior |
Source: | Code function: | 0_2_0008DBBE | |
Source: | Code function: | 0_2_0005C2A2 | |
Source: | Code function: | 0_2_000968EE | |
Source: | Code function: | 0_2_0009698F | |
Source: | Code function: | 0_2_0008D076 | |
Source: | Code function: | 0_2_0008D3A9 | |
Source: | Code function: | 0_2_00099642 | |
Source: | Code function: | 0_2_0009979D | |
Source: | Code function: | 0_2_00099B2B | |
Source: | Code function: | 0_2_00095C97 |
Source: | Code function: | 0_2_000242DE |
Source: | Binary or memory string: |
Anti Debugging |
---|
Source: | Debugger detection routine: | graph_0-96921 |
Source: | Code function: | 0_2_0009EAA2 |
Source: | Code function: | 0_2_00052622 |
Source: | Code function: | 0_2_000242DE |
Source: | Code function: | 0_2_00044CE8 |
Source: | Code function: | 0_2_00080B62 |
Source: | Code function: | 0_2_00052622 | |
Source: | Code function: | 0_2_0004083F | |
Source: | Code function: | 0_2_000409D5 | |
Source: | Code function: | 0_2_00040C21 |
Source: | Code function: | 0_2_00081201 |
Source: | Code function: | 0_2_00062BA5 |
Source: | Code function: | 0_2_0008B226 |
Source: | Code function: | 0_2_000A22DA |
Source: | Process created: | Jump to behavior |
Source: | Code function: | 0_2_00080B62 |
Source: | Code function: | 0_2_00081663 |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Source: | Code function: | 0_2_00040698 |
Source: | Code function: | 0_2_00098195 |
Source: | Code function: | 0_2_0007D27A |
Source: | Code function: | 0_2_0005B952 |
Source: | Code function: | 0_2_000242DE |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Source: | Code function: | 0_2_000A1204 | |
Source: | Code function: | 0_2_000A1806 |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | 2 Valid Accounts | 1 Native API | 1 DLL Side-Loading | 1 Exploitation for Privilege Escalation | 1 Disable or Modify Tools | 31 Input Capture | 2 System Time Discovery | Remote Services | 1 Archive Collected Data | 2 Ingress Tool Transfer | Exfiltration Over Other Network Medium | 1 System Shutdown/Reboot |
Credentials | Domains | Default Accounts | Scheduled Task/Job | 2 Valid Accounts | 1 DLL Side-Loading | 1 Deobfuscate/Decode Files or Information | LSASS Memory | 1 Account Discovery | Remote Desktop Protocol | 31 Input Capture | 11 Encrypted Channel | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | 2 Valid Accounts | 2 Obfuscated Files or Information | Security Account Manager | 2 File and Directory Discovery | SMB/Windows Admin Shares | 3 Clipboard Data | 3 Non-Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | 21 Access Token Manipulation | 1 DLL Side-Loading | NTDS | 15 System Information Discovery | Distributed Component Object Model | Input Capture | 4 Application Layer Protocol | Traffic Duplication | Data Destruction |
Gather Victim Network Information | Server | Cloud Accounts | Launchd | Network Logon Script | 12 Process Injection | 1 Masquerading | LSA Secrets | 221 Security Software Discovery | SSH | Keylogging | Fallback Channels | Scheduled Transfer | Data Encrypted for Impact |
Domain Properties | Botnet | Replication Through Removable Media | Scheduled Task | RC Scripts | RC Scripts | 2 Valid Accounts | Cached Domain Credentials | 22 Virtualization/Sandbox Evasion | VNC | GUI Input Capture | Multiband Communication | Data Transfer Size Limits | Service Stop |
DNS | Web Services | External Remote Services | Systemd Timers | Startup Items | Startup Items | 22 Virtualization/Sandbox Evasion | DCSync | 2 Process Discovery | Windows Remote Management | Web Portal Capture | Commonly Used Port | Exfiltration Over C2 Channel | Inhibit System Recovery |
Network Trust Dependencies | Serverless | Drive-by Compromise | Container Orchestration Job | Scheduled Task/Job | Scheduled Task/Job | 21 Access Token Manipulation | Proc Filesystem | 11 Application Window Discovery | Cloud Services | Credential API Hooking | Application Layer Protocol | Exfiltration Over Alternative Protocol | Defacement |
Network Topology | Malvertising | Exploit Public-Facing Application | Command and Scripting Interpreter | At | At | 12 Process Injection | /etc/passwd and /etc/shadow | 1 System Owner/User Discovery | Direct Cloud VM Connections | Data Staged | Web Protocols | Exfiltration Over Symmetric Encrypted Non-C2 Protocol | Internal Defacement |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
29% | ReversingLabs | |||
100% | Joe Sandbox ML |
⊘No Antivirus matches
⊘No Antivirus matches
⊘No Antivirus matches
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
youtube-ui.l.google.com | 216.58.212.142 | true | false | unknown | |
www3.l.google.com | 216.58.212.142 | true | false | unknown | |
play.google.com | 142.250.186.174 | true | false | unknown | |
www.google.com | 142.250.184.196 | true | false | unknown | |
youtube.com | 142.250.185.78 | true | false | unknown | |
accounts.youtube.com | unknown | unknown | false | unknown | |
www.youtube.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | unknown | ||
false | unknown | ||
false | unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false |
| unknown | ||
false | unknown | |||
false | unknown | |||
false |
| unknown | ||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false |
| unknown | ||
false | unknown | |||
false |
| unknown | ||
false | unknown | |||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
142.250.185.78 | youtube.com | United States | 15169 | GOOGLEUS | false | |
142.250.184.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
216.58.212.142 | youtube-ui.l.google.com | United States | 15169 | GOOGLEUS | false | |
142.250.186.174 | play.google.com | United States | 15169 | GOOGLEUS | false | |
142.250.181.238 | unknown | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false |
IP |
---|
192.168.2.6 |
Joe Sandbox version: | 41.0.0 Charoite |
Analysis ID: | 1520717 |
Start date and time: | 2024-09-27 19:03:11 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 5m 0s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | default.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 10 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | file.exe |
Detection: | MAL |
Classification: | mal68.evad.winEXE@33/34@12/7 |
EGA Information: |
|
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.185.227, 172.217.18.14, 142.251.168.84, 34.104.35.123, 142.250.185.74, 142.250.186.106, 142.250.186.74, 172.217.23.106, 216.58.206.74, 216.58.212.138, 142.250.185.138, 172.217.16.138, 142.250.186.138, 216.58.212.170, 142.250.186.42, 172.217.16.202, 172.217.18.10, 142.250.185.106, 172.217.18.106, 142.250.74.202, 142.250.181.227, 142.250.74.195, 142.250.185.202, 142.250.181.234, 142.250.184.202, 142.250.186.170, 142.250.185.170, 142.250.185.234, 142.250.184.234, 192.229.221.95, 87.248.204.0, 216.58.212.131, 108.177.15.84, 93.184.221.240, 172.217.16.206
- Excluded domains from analysis (whitelisted): clients1.google.com, client.wns.windows.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, slscr.update.microsoft.com, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, dns.msftncsi.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, update.googleapis.com, clients.l.google.com, www.gstatic.com, optimizationguide-pa.googleapis.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtOpenKeyEx calls found.
- Report size getting too big, too many NtQueryValueKey calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: file.exe
⊘No simulations
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
239.255.255.250 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse |
⊘No context
⊘No context
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
1138de370e523e824bbca92d049a3777 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
3b5074b1b5d032e5620f69f9f700ff0e | Get hash | malicious | AgentTesla, GuLoader | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Amadey, BitCoin Miner, SilentXMRMiner | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | LummaC, Amadey, CryptOne, LummaC Stealer, PureLog Stealer, RedLine, Stealc | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
|
⊘No context
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Download Service\Files\845bb9d1-3687-4d66-8dc3-a70105bc17a8 (copy)
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5081 |
Entropy (8bit): | 7.875240898924663 |
Encrypted: | false |
SSDEEP: | 96:m3RjDp2xae8WU2yiWwqA4XSnl3xzHD8ciYkEMEpSu3UnANw98ZcYQGbNN5hh9qq7:cvp2xaN2yiWnSBJDPhkr8iwo8ZNNf1R7 |
MD5: | B52EB6EAB83D60C931A20CFEB0EBC8A8 |
SHA1: | 28E6418773EA47004353A6B6EB76960A4C27CEFA |
SHA-256: | B0A6470B51BAC794867DF4DE418EA0AD8F485689A8EBA2CCF3ED9B4681633813 |
SHA-512: | 7522E05C161B89ACDCAC5D71D4EA3793348DF265405E96A7060BF274AEBC52357B581B098F440DAC354E64EE5F127585F7655317EEE4E4F065D884AF73C64D94 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5081 |
Entropy (8bit): | 7.875240898924663 |
Encrypted: | false |
SSDEEP: | 96:m3RjDp2xae8WU2yiWwqA4XSnl3xzHD8ciYkEMEpSu3UnANw98ZcYQGbNN5hh9qq7:cvp2xaN2yiWnSBJDPhkr8iwo8ZNNf1R7 |
MD5: | B52EB6EAB83D60C931A20CFEB0EBC8A8 |
SHA1: | 28E6418773EA47004353A6B6EB76960A4C27CEFA |
SHA-256: | B0A6470B51BAC794867DF4DE418EA0AD8F485689A8EBA2CCF3ED9B4681633813 |
SHA-512: | 7522E05C161B89ACDCAC5D71D4EA3793348DF265405E96A7060BF274AEBC52357B581B098F440DAC354E64EE5F127585F7655317EEE4E4F065D884AF73C64D94 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 4070 |
Entropy (8bit): | 5.362700670482359 |
Encrypted: | false |
SSDEEP: | 96:GUpT+TmXtdW1qsHFcn7t7CnyWYvNTcLaQOw:lpT+qXW1PFcn7tGnyWY1TGb |
MD5: | ED368A20CB303C0E7C6A3E6E43C2E14F |
SHA1: | 429A5C538B45221F80405163D1F87912DD73C05A |
SHA-256: | 93BA77AD4B11E0A70C0D36576F0DF24E27F50001EA02BAA6D357E034532D97F2 |
SHA-512: | DE74BBADE910475DD245FFEFD4E1FD10137DE710B1C920D33BA52554911496E1339EF3C1F6D9D315CBC98A60ABE5687A3E7D8BEE483708E18D25722E794BDBE9 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=A1yn5d,A7fCU,AvtSve,CMcBD,E87wgc,EEDORb,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,Mlhmy,MpJwZc,NOeYWe,NTMZac,NwH0H,O6y8ed,OTA3Ae,OmgaI,PHUIyb,PrPYRd,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,Ug7Xab,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZDZcre,ZakeSe,ZfAoz,_b,_tp,aC1iue,aW3pY,aurFic,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,ebZ3mb,f8Gu1e,fKUV3e,gJzDyc,gychg,hc6Ubd,inNHtf,iyZMqd,kWgXee,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,ovKuLd,pxq3x,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,w9hDv,ws9Tlc,xBaz7b,xQtZb,xUdipf,xiZRqc,y5vRwf,yDVVkb,yRXbo,ywOR5c,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=sOXFj,q0xTif,ZZ4WUe" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 32499 |
Entropy (8bit): | 5.361345284201954 |
Encrypted: | false |
SSDEEP: | 768:mLX1O+aL6fgyIiREM4RKmh90toLoTswtF3ATcbDR6kIsnJd9DPyMv/FI:U2M4oltoLoTswtFoc/tIsnXFLI |
MD5: | D5C3FB8EAE24AB7E40009338B5078496 |
SHA1: | 5638BF5986A6445A88CD79A9B690B744B126BEC2 |
SHA-256: | 597C14D360D690BCFDC2B8D315E6BB8879AEF33DE6C30D274743079BDB63C6B0 |
SHA-512: | 6AE434850D473BEF15AA694AB4862596982CDDA6BD3991991D3ADD8F4A5F61DFBF8756D0DA98B72EF083909D68CF7B6B148A6488E9381F92FBF15CCB20176A0E |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=_b,_tp/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=byfTOb,lsjVmc,LEikZe" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1416 |
Entropy (8bit): | 5.299417038163051 |
Encrypted: | false |
SSDEEP: | 24:kMYD7JqrxsNL90YIzFK/Hb5eNhz1uktdDuvKKKGbLZ99GbSSF/ZR8OkdnprGJ:o7JopFN+ASCKKGbF99GbSS3RY7rw |
MD5: | 6AEAE74D22F7C2D9658B057EA5D85069 |
SHA1: | 2F4644F53FB4E8EC4AFD49A31C55853F062D284C |
SHA-256: | EBFE7B5A1020808B9A02667ECC0E7E460643CBDE84F0B9C410C70A91C9726667 |
SHA-512: | C43F067D649CBC3091B9878715F718E47CD753C860EBEB20CD387C325640C2EF3CA9556D0689852CEF667C8E83BF42568BEF33C8A92BC07FDB91CB7EA608162D |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=A1yn5d,A7fCU,AvtSve,CMcBD,E87wgc,EEDORb,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,Mlhmy,MpJwZc,NOeYWe,NTMZac,NwH0H,O6y8ed,OTA3Ae,OmgaI,PHUIyb,PrPYRd,RMhBfe,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,Ug7Xab,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZDZcre,ZZ4WUe,ZakeSe,ZfAoz,ZwDk9d,_b,_tp,aC1iue,aW3pY,aurFic,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,ebZ3mb,f8Gu1e,fKUV3e,gJzDyc,gychg,hc6Ubd,inNHtf,iyZMqd,kWgXee,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,ovKuLd,pxq3x,q0xTif,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,sOXFj,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,w9hDv,ws9Tlc,xBaz7b,xQtZb,xUdipf,xiZRqc,y5vRwf,yDVVkb,yRXbo,ywOR5c,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=P6sQOc" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5430 |
Entropy (8bit): | 3.6534652184263736 |
Encrypted: | false |
SSDEEP: | 48:wIJct3xIAxG/7nvWDtZcdYLtX7B6QXL3aqG8Q:wIJct+A47v+rcqlBPG9B |
MD5: | F3418A443E7D841097C714D69EC4BCB8 |
SHA1: | 49263695F6B0CDD72F45CF1B775E660FDC36C606 |
SHA-256: | 6DA5620880159634213E197FAFCA1DDE0272153BE3E4590818533FAB8D040770 |
SHA-512: | 82D017C4B7EC8E0C46E8B75DA0CA6A52FD8BCE7FCF4E556CBDF16B49FC81BE9953FE7E25A05F63ECD41C7272E8BB0A9FD9AEDF0AC06CB6032330B096B3702563 |
Malicious: | false |
URL: | https://www.google.com/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 339369 |
Entropy (8bit): | 5.533022690974177 |
Encrypted: | false |
SSDEEP: | 3072:9hFx8tVGv15Iyr4t4s2GvgHVTYDh+rvVvurtVEWzcLmLyszIm8j2kzU:9NlvE+zTYDh+rvh8cLMijFg |
MD5: | FF16B667178352EFDF164CE3F16A8F55 |
SHA1: | E9B1BC661337502E31306B5E7AE37D93C0551455 |
SHA-256: | 625EC33FBA1BFF3734490AC15C8430CDB5850E9159B80F607E093BB73B7F243B |
SHA-512: | F197393CB05F94BCEDA0FE3176842E09CFCFC2348DE22C9815DD8369D5D333038E8F93F426994482E2E9731A859FA9B6B6062BAD4AA3BFD3C0730281C4CCADB9 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=LEikZe,_b,_tp,byfTOb,lsjVmc/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=n73qwf,SCuOPb,IZT63,vfuNJf,UUJqVe,ws9Tlc,siKnQd,XVq9Qb,STuCOe,njlZCf,m9oV,vjKJJ,y5vRwf,iyZMqd,NTMZac,mzzZzc,rCcCxc,vvMGie,NOeYWe,O6y8ed,L9OGUe,PrPYRd,MpJwZc,qPfo0c,cYShmd,hc6Ubd,Rkm0ef,KUM7Z,oLggrd,inNHtf,L1AAkb,WpP9Yc,lwddkf,gJzDyc,SpsfSb,aC1iue,tUnxGc,aW3pY,ZakeSe,EFQ78c,xQtZb,I6YDgd,zbML3c,zr1jrb,vHEMJe,YHI3We,YTxL4,bSspM,Uas9Hd,zy0vNb,K0PMbc,AvtSve,qmdT9,MY7mZe,xBaz7b,GwYlN,eVCnO,EIOG1e,LDQI" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3131 |
Entropy (8bit): | 5.3750044852869046 |
Encrypted: | false |
SSDEEP: | 48:o7zfN/cD498xdg+Y5jNQ8js6npwk0OmNAEZbpMzR4EQBcW5QcHj9KWfGAeFKRrw:oCD9dA5jOEGh+EFqR4rhqUhzff9w |
MD5: | 39693D34EE3D1829DBB1627C4FC6687B |
SHA1: | A03303C2F027F3749B48D5134D1F8FB3E495C6E9 |
SHA-256: | 03B0C1B4E402E0BCF75D530DD9085B25357EEFD09E238453DE1F3A042542C076 |
SHA-512: | AC0749EDC33DA0EC0E40470388DD797B6528AD08B8FAC1C2AC42F85198131052BA1B533E90409D35DA237607E8B07D591FA6BA580B6A90B0D0AB2282A01F7585 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=A1yn5d,A7fCU,AvtSve,CMcBD,E87wgc,EEDORb,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,Mlhmy,MpJwZc,NOeYWe,NTMZac,NwH0H,O6y8ed,OTA3Ae,OmgaI,PHUIyb,PrPYRd,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,Ug7Xab,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZDZcre,ZZ4WUe,ZakeSe,ZfAoz,_b,_tp,aC1iue,aW3pY,aurFic,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,ebZ3mb,f8Gu1e,fKUV3e,gJzDyc,gychg,hc6Ubd,inNHtf,iyZMqd,kWgXee,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,ovKuLd,pxq3x,q0xTif,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,sOXFj,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,w9hDv,ws9Tlc,xBaz7b,xQtZb,xUdipf,xiZRqc,y5vRwf,yDVVkb,yRXbo,ywOR5c,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=ZwDk9d,RMhBfe" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 52280 |
Entropy (8bit): | 7.995413196679271 |
Encrypted: | true |
SSDEEP: | 1536:1rvqtK8DZilXxwJ8mMwAZy7phqsFLdG3B4d:xytBZits8bw4wzbFxG3B4d |
MD5: | F61F0D4D0F968D5BBA39A84C76277E1A |
SHA1: | AA3693EA140ECA418B4B2A30F6A68F6F43B4BEB2 |
SHA-256: | 57147F08949ABABE7DEEF611435AE418475A693E3823769A25C2A39B6EAD9CCC |
SHA-512: | 6C3BD90F709BCF9151C9ED9FFEA55C4F6883E7FDA2A4E26BF018C83FE1CFBE4F4AA0DB080D6D024070D53B2257472C399C8AC44EEFD38B9445640EFA85D5C487 |
Malicious: | false |
URL: | https://fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCI.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1858 |
Entropy (8bit): | 5.253939888205379 |
Encrypted: | false |
SSDEEP: | 48:o7BNJfeFb8L3A6FHqIy5Z+d70OCzSfvi/3fM/r8ZQzRrw:oFuILhFHrVCz0vLZz9w |
MD5: | 10FF6F99E3228E96AFD6E2C30EF97C0A |
SHA1: | 4AE3DCB8D1F5A0C302D5BAD9DFF5050A7A5E8130 |
SHA-256: | 95E5546E1C7F311D07BB5050CC456A973E43BCC4777BA6014757376016537679 |
SHA-512: | 116C0B1CAC98A27044100005545AB66BE5F4801D75DC259093A9F145B3A4ACD8DC1C360AF525F6DC8421CD54B675A78023D2ED8B57F5946A3969543758C673C9 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=A1yn5d,A7fCU,AvtSve,CMcBD,E87wgc,EEDORb,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,Mlhmy,MpJwZc,NOeYWe,NTMZac,NwH0H,O6y8ed,OTA3Ae,OmgaI,P6sQOc,PHUIyb,PrPYRd,RMhBfe,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,Ug7Xab,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZDZcre,ZZ4WUe,ZakeSe,ZfAoz,ZwDk9d,_b,_tp,aC1iue,aW3pY,aurFic,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,ebZ3mb,f8Gu1e,fKUV3e,gJzDyc,gychg,hc6Ubd,inNHtf,iyZMqd,kWgXee,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,ovKuLd,pxq3x,q0xTif,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,sOXFj,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,w9hDv,ws9Tlc,xBaz7b,xQtZb,xUdipf,xiZRqc,y5vRwf,yDVVkb,yRXbo,ywOR5c,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=iAskyc,ziXSP" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 22827 |
Entropy (8bit): | 5.420322672717721 |
Encrypted: | false |
SSDEEP: | 384:/jqdWXWfyA20UUjDE8BSUxDJs16KHvSN34kaHaN+587SaXD2mLR0H:/jqdWXAUUjDE84Wi6KPSKjHaN+58+0J2 |
MD5: | 2B29741A316862EE788996DD29116DD5 |
SHA1: | 9D5551916D4452E977C39B8D69CF88DF2AAA462B |
SHA-256: | 62955C853976B722EFBB4C116A10DB3FF54580EDD7495D280177550B8F4289AB |
SHA-512: | 6E37C3258F07F29909763728DADE0CD40A3602D55D9099F78B37756926FCF2A50008B82876B518FEAF3E56617F0F7D1D37A73C346A99A58E6AD8BCD6689E9B15 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=AvtSve,CMcBD,E87wgc,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,MpJwZc,NOeYWe,NTMZac,O6y8ed,PHUIyb,PrPYRd,Rkm0ef,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZakeSe,_b,_tp,aC1iue,aW3pY,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,f8Gu1e,gJzDyc,hc6Ubd,inNHtf,iyZMqd,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,pxq3x,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,ws9Tlc,xBaz7b,xQtZb,xiZRqc,y5vRwf,yRXbo,ywOR5c,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=RqjULd" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 358292 |
Entropy (8bit): | 5.622523467644739 |
Encrypted: | false |
SSDEEP: | 3072:sy/lJpABa9hEP2iyjV5ygVLdh3YB4qyhLD6Crjyp3Sm5pnrjtuo0MpLEKusgI8sw:TyTNoygVWyhoDAMpL5gI8seqfhP3p+L |
MD5: | 14049A4F8FB34A2FA52A0358C72B2F2E |
SHA1: | 680985BDBE3FA830B31A9F02D40AFE925C12E70E |
SHA-256: | 56C112F31C6F61735FE5EBD188AD0928406F04454AFEC139297328D3EE6540B4 |
SHA-512: | 5637742A7E2936540D957BA8A09991478EF0D4C28A3DA92D5260C7D5DA7BFD20811AFA26C0B53DD88D4A536B3C40A21ACA3310EFC17508A1C806B76ACB320631 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=AvtSve,EFQ78c,EIOG1e,GwYlN,I6YDgd,IZT63,K0PMbc,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,MpJwZc,NOeYWe,NTMZac,O6y8ed,PrPYRd,Rkm0ef,SCuOPb,STuCOe,SpsfSb,UUJqVe,Uas9Hd,WpP9Yc,XVq9Qb,YHI3We,YTxL4,ZakeSe,_b,_tp,aC1iue,aW3pY,bSspM,byfTOb,cYShmd,eVCnO,gJzDyc,hc6Ubd,inNHtf,iyZMqd,lsjVmc,lwddkf,m9oV,mzzZzc,n73qwf,njlZCf,oLggrd,qPfo0c,qmdT9,rCcCxc,siKnQd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,ws9Tlc,xBaz7b,xQtZb,y5vRwf,zbML3c,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=K1ZKnb,ziZ8Mc,b3kMqb,mvkUhe,CMcBD,Fndnac,t2srLd,EN3i8d,z0u0L,xiZRqc" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 84 |
Entropy (8bit): | 4.875266466142591 |
Encrypted: | false |
SSDEEP: | 3:DZFJu0+WVTBCq2Bjdw2KsJJuYHSKnZ:lFJuuVTBudw29nu4SKZ |
MD5: | 87B6333E98B7620EA1FF98D1A837A39E |
SHA1: | 105DE6815B0885357DE1414BFC0D77FCC9E924EF |
SHA-256: | DCD3C133C5C40BECD4100BBE6EDAE84C9735E778E4234A5E8395C56FF8A733BA |
SHA-512: | 867D7943D813685FAA76394E53199750C55817E836FD19C933F74D11E9657CE66719A6D6B2E39EE1DE62358BCE364E38A55F4E138DF92337DE6985DDCD5D0994 |
Malicious: | false |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzQSHgmA6QC9dWevzxIFDRkBE_oSBQ3oIX6GEgUN05ioBw==?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3471 |
Entropy (8bit): | 5.5174491302699495 |
Encrypted: | false |
SSDEEP: | 96:ojAmjTJ/fJgpIcB7Fd2tilGBEMO/A6VxV08w:vUTJpgDJXM0ApJ |
MD5: | 2D999C87DD54C7FE6400D267C33FBB23 |
SHA1: | 414C3A329C2760325EDBACBD7A221D7F8DBFEEE8 |
SHA-256: | 76D55A1AFC1D39CB04D60EB04E45A538A0E75EE2871561C84CC89B1C13596BCC |
SHA-512: | 72D923BB71DD147139962FF8E2BD0E336E0F6409C212AC2F25387D0F3B4FC9365F5A6D40E2980BB1065534888362C97D6B7663E362D29166B5915D2A9DA7D238 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=A1yn5d,A7fCU,AvtSve,CMcBD,E87wgc,EEDORb,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,Mlhmy,MpJwZc,NOeYWe,NTMZac,NwH0H,O6y8ed,OTA3Ae,OmgaI,P6sQOc,PHUIyb,PrPYRd,RMhBfe,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,Ug7Xab,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZDZcre,ZZ4WUe,ZakeSe,ZfAoz,ZwDk9d,_b,_tp,aC1iue,aW3pY,aurFic,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,ebZ3mb,f8Gu1e,fKUV3e,gJzDyc,gychg,hc6Ubd,iAskyc,inNHtf,iyZMqd,kWgXee,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,ovKuLd,pxq3x,q0xTif,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,sOXFj,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,w9hDv,wg1P6b,ws9Tlc,xBaz7b,xQtZb,xUdipf,xiZRqc,y5vRwf,yDVVkb,yRXbo,ywOR5c,z0u0L,zbML3c,ziXSP,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=Wt6vjf,hhhU8,FCpbqb,WhJNk" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5049 |
Entropy (8bit): | 5.317800104741948 |
Encrypted: | false |
SSDEEP: | 96:oHX9gPiPrfnHhsB0TR6kg1oDPJzLmM18Vh1z2fEZ54TZtnqj6w:EtEAr6BmPZtOeEvW/ncP |
MD5: | CE53EF566B68CCF2D62FA044CFB0D138 |
SHA1: | F48EC60289F2B55E8B388601206888F8295B1EB1 |
SHA-256: | E6CC5114D92811D5DE0663266D4B63F367834AFA0FC3BAFA54F707038C59D010 |
SHA-512: | 20B434881DE971E263669E6096C01665D4D35B0FBFF47D312A4A442645EE962A8CE6AD7E68246D4EE9691BD30D9B1DDCF7059226492E1B58CD3191B63B001E4D |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=A1yn5d,A7fCU,AvtSve,CMcBD,E87wgc,EEDORb,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,Mlhmy,MpJwZc,NOeYWe,NTMZac,NwH0H,O6y8ed,OTA3Ae,OmgaI,P6sQOc,PHUIyb,PrPYRd,RMhBfe,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,Ug7Xab,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZDZcre,ZZ4WUe,ZakeSe,ZfAoz,ZwDk9d,_b,_tp,aC1iue,aW3pY,aurFic,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,ebZ3mb,f8Gu1e,fKUV3e,gJzDyc,gychg,hc6Ubd,iAskyc,inNHtf,iyZMqd,kWgXee,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,ovKuLd,pxq3x,q0xTif,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,sOXFj,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,w9hDv,ws9Tlc,xBaz7b,xQtZb,xUdipf,xiZRqc,y5vRwf,yDVVkb,yRXbo,ywOR5c,z0u0L,zbML3c,ziXSP,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=wg1P6b" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 603951 |
Entropy (8bit): | 5.789949489744101 |
Encrypted: | false |
SSDEEP: | 3072:x0pApkygA62bwwdnO2YflNYhFGOizdGj008PpVVM96C5bMEPQUhts6FV8eKqtVAT:xlgNmwwdnOsF98oNGuQRAYqXsI1+ |
MD5: | 036BC6CEC1912EAA63C716C2A7494AFC |
SHA1: | C32891F55B0D7A86DCE1BDBB7B84DB21C2A09F4F |
SHA-256: | 1A6181C3DFAEE5919CE57152DCFFCDC4B151C5FB2969CFD62168C1711FF202CF |
SHA-512: | 0AAA2285D109114921B5FD8A15F9A3D1F218AF8C61054B3925965E6753F8A49B45798326EA986C4A6B6180B6C36292A4652E2BA730C7505684DAAA4B5C314675 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/excm=_b,_tp,identifierview/ed=1/dg=0/wt=2/ujg=1/rs=AOaEmlGsNipZrCRRMFQh1-tVmHSsIDzQTA/m=_b,_tp" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 9210 |
Entropy (8bit): | 5.3872171131917925 |
Encrypted: | false |
SSDEEP: | 192:FK/pAzN7GZ068Hqhqu6DQaVapzYjgKItwdiwUsYRTi1j1t9bRl9:FqI7GZ04dRYjghtgisYYbt9ll9 |
MD5: | AB70454DE18E1CE16E61EAC290FC304D |
SHA1: | 68532B5E8B262D7E14B8F4507AA69A61146B3C18 |
SHA-256: | B32D746867CC4FA21FD39437502F401D952D0A3E8DC708DFB7D58B85F256C0F1 |
SHA-512: | A123C517380BEF0B47F23A5A6E1D16650FE39D9C701F9FA5ADD79294973C118E8EA3A7BA32CB63C3DFC0CE0F843FB86BFFCAA2AAE987629E7DFF84F176DEBB98 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=AvtSve,CMcBD,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,MpJwZc,NOeYWe,NTMZac,O6y8ed,PrPYRd,Rkm0ef,SCuOPb,STuCOe,SpsfSb,UUJqVe,Uas9Hd,WpP9Yc,XVq9Qb,YHI3We,YTxL4,ZakeSe,_b,_tp,aC1iue,aW3pY,b3kMqb,bSspM,byfTOb,cYShmd,eVCnO,gJzDyc,hc6Ubd,inNHtf,iyZMqd,lsjVmc,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,qPfo0c,qmdT9,rCcCxc,siKnQd,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,ws9Tlc,xBaz7b,xQtZb,xiZRqc,y5vRwf,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=ltDFwf,SD8Jgb,rmumx,E87wgc,qPYxq,Tbb4sb,pxq3x,f8Gu1e,soHxf,YgOFye,yRXbo,bTi8wc,ywOR5c,PHUIyb" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1652 |
Entropy (8bit): | 5.296387798840289 |
Encrypted: | false |
SSDEEP: | 48:o7YNJvl3WlDQENrpB3stYCIgMxILNH/wf7DVTBpdQrw:o5fpB8iDwYlGw |
MD5: | F18EA2D35027D6173E2864B5863CB6E3 |
SHA1: | 1979174E786593DAFD2B23084F26332AB929216C |
SHA-256: | 547E151C2D842255451D651B749239B28DED9F803B524A77BD1E14D878BDAF58 |
SHA-512: | A031A439A99BCA557951A75234766033145E7D05E8453A4FE9BC0EA091E49BA59AF1479850D1E896B2D114575A80CCE111A787E7EEA9A7F288C78AD325436C18 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en._s1fC-CLCMs.es5.O/ck=boq-identity.AccountsSignInUi.gkspycgpiCY.L.B1.O/am=xIFgKBimEQjEE86BHlAUCBkAAAAAAAAAALQBAIBm/d=1/exm=AvtSve,CMcBD,E87wgc,EFQ78c,EIOG1e,EN3i8d,Fndnac,GwYlN,I6YDgd,IZT63,K0PMbc,K1ZKnb,KUM7Z,L1AAkb,L9OGUe,LDQI,LEikZe,MY7mZe,MpJwZc,NOeYWe,NTMZac,O6y8ed,PHUIyb,PrPYRd,Rkm0ef,RqjULd,SCuOPb,SD8Jgb,STuCOe,SpsfSb,Tbb4sb,UUJqVe,Uas9Hd,WpP9Yc,XVq9Qb,YHI3We,YTxL4,YgOFye,ZakeSe,_b,_tp,aC1iue,aW3pY,b3kMqb,bSspM,bTi8wc,byfTOb,cYShmd,eVCnO,f8Gu1e,gJzDyc,hc6Ubd,inNHtf,iyZMqd,lsjVmc,ltDFwf,lwddkf,m9oV,mvkUhe,mzzZzc,n73qwf,njlZCf,oLggrd,pxq3x,qPYxq,qPfo0c,qmdT9,rCcCxc,rmumx,siKnQd,soHxf,t2srLd,tUnxGc,vHEMJe,vfuNJf,vjKJJ,vvMGie,ws9Tlc,xBaz7b,xQtZb,xiZRqc,y5vRwf,yRXbo,ywOR5c,z0u0L,zbML3c,ziZ8Mc,zr1jrb,zy0vNb/excm=_b,_tp,identifierview/ed=1/wt=2/ujg=1/rs=AOaEmlGbG-r9dBZftM0U0ZDPTNCqugT4jw/ee=ASJRFf:DAnQ7e;Al0B8:kibjWe;DaIJ8c:iAskyc;EVNhjf:pw70Gc;EkYFhd:GwYlN;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:XVMNvd;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SMDL4c:K0PMbc;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;UpnZUd:nnwwYc;Uvc8o:VDovNc;XdiAjb:NLiXbe;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:vfuNJf;lOO0Vd:OTA3Ae;nAFL3:NTMZac;nTuGK:JKNPM;oGtAuc:sOXFj;oSUNyd:K0PMbc;oXZmbc:tUnxGc;pXdRYb:L9OGUe;qafBPd:yDVVkb;qddgKe:xQtZb;vNjB7d:YTxL4;wR5FRb:siKnQd;yxTchf:KUM7Z/m=xUdipf,OTA3Ae,A1yn5d,fKUV3e,aurFic,Ug7Xab,NwH0H,OmgaI,gychg,w9hDv,EEDORb,Mlhmy,ZfAoz,kWgXee,ovKuLd,yDVVkb,ebZ3mb,ZDZcre,A7fCU" |
Preview: |
File type: | |
Entropy (8bit): | 7.036733474481914 |
TrID: |
|
File name: | file.exe |
File size: | 1'167'360 bytes |
MD5: | 9fcc1c119eaa840e094979db5be1a570 |
SHA1: | 9fe0f2a9f8d86659c82b855ff21b5a3723631f72 |
SHA256: | 7e9e46e03e80fc02654d7531705c67814d0bc54854ec6700e06437e4cee4f22c |
SHA512: | af77ec471d46e3daafa889cf2a56e5b0655b7aa6d7f56ec2e6a6b3db812c198e849d79a83a5ec38efadcb6afef87e75f2cc6749c06ba2121fe5bec1433e586b3 |
SSDEEP: | 24576:SqDEvCTbMWu7rQYlBQcBiT6rprG8arf2+b+HdiJUK:STvC/MTQYxsWR7arf2+b+HoJU |
TLSH: | 7045CF027391C062FF9B92734F5AF6115BBC69260123E61F13981DBABE701B1563E7A3 |
File Content Preview: | MZ......................@................................... ...........!..L.!This program cannot be run in DOS mode....$.......................j:......j:..C...j:......@.*...............................n.......~.............{.......{.......{.........z.... |
Icon Hash: | aaf3e3e3938382a0 |
Entrypoint: | 0x420577 |
Entrypoint Section: | .text |
Digitally signed: | false |
Imagebase: | 0x400000 |
Subsystem: | windows gui |
Image File Characteristics: | EXECUTABLE_IMAGE, LARGE_ADDRESS_AWARE, 32BIT_MACHINE |
DLL Characteristics: | DYNAMIC_BASE, TERMINAL_SERVER_AWARE |
Time Stamp: | 0x66F6DFF6 [Fri Sep 27 16:40:22 2024 UTC] |
TLS Callbacks: | |
CLR (.Net) Version: | |
OS Version Major: | 5 |
OS Version Minor: | 1 |
File Version Major: | 5 |
File Version Minor: | 1 |
Subsystem Version Major: | 5 |
Subsystem Version Minor: | 1 |
Import Hash: | 948cc502fe9226992dce9417f952fce3 |
Instruction |
---|
call 00007FE144C6A943h |
jmp 00007FE144C6A24Fh |
push ebp |
mov ebp, esp |
push esi |
push dword ptr [ebp+08h] |
mov esi, ecx |
call 00007FE144C6A42Dh |
mov dword ptr [esi], 0049FDF0h |
mov eax, esi |
pop esi |
pop ebp |
retn 0004h |
and dword ptr [ecx+04h], 00000000h |
mov eax, ecx |
and dword ptr [ecx+08h], 00000000h |
mov dword ptr [ecx+04h], 0049FDF8h |
mov dword ptr [ecx], 0049FDF0h |
ret |
push ebp |
mov ebp, esp |
push esi |
push dword ptr [ebp+08h] |
mov esi, ecx |
call 00007FE144C6A3FAh |
mov dword ptr [esi], 0049FE0Ch |
mov eax, esi |
pop esi |
pop ebp |
retn 0004h |
and dword ptr [ecx+04h], 00000000h |
mov eax, ecx |
and dword ptr [ecx+08h], 00000000h |
mov dword ptr [ecx+04h], 0049FE14h |
mov dword ptr [ecx], 0049FE0Ch |
ret |
push ebp |
mov ebp, esp |
push esi |
mov esi, ecx |
lea eax, dword ptr [esi+04h] |
mov dword ptr [esi], 0049FDD0h |
and dword ptr [eax], 00000000h |
and dword ptr [eax+04h], 00000000h |
push eax |
mov eax, dword ptr [ebp+08h] |
add eax, 04h |
push eax |
call 00007FE144C6CFEDh |
pop ecx |
pop ecx |
mov eax, esi |
pop esi |
pop ebp |
retn 0004h |
lea eax, dword ptr [ecx+04h] |
mov dword ptr [ecx], 0049FDD0h |
push eax |
call 00007FE144C6D038h |
pop ecx |
ret |
push ebp |
mov ebp, esp |
push esi |
mov esi, ecx |
lea eax, dword ptr [esi+04h] |
mov dword ptr [esi], 0049FDD0h |
push eax |
call 00007FE144C6D021h |
test byte ptr [ebp+08h], 00000001h |
pop ecx |
Programming Language: |
|
Name | Virtual Address | Virtual Size | Is in Section |
---|---|---|---|
IMAGE_DIRECTORY_ENTRY_EXPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_IMPORT | 0xc8e64 | 0x17c | .rdata |
IMAGE_DIRECTORY_ENTRY_RESOURCE | 0xd4000 | 0x46464 | .rsrc |
IMAGE_DIRECTORY_ENTRY_EXCEPTION | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_SECURITY | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_BASERELOC | 0x11b000 | 0x7594 | .reloc |
IMAGE_DIRECTORY_ENTRY_DEBUG | 0xb0ff0 | 0x1c | .rdata |
IMAGE_DIRECTORY_ENTRY_COPYRIGHT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_GLOBALPTR | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_TLS | 0xc3400 | 0x18 | .rdata |
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG | 0xb1010 | 0x40 | .rdata |
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_IAT | 0x9c000 | 0x894 | .rdata |
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_RESERVED | 0x0 | 0x0 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Xored PE | ZLIB Complexity | File Type | Entropy | Characteristics |
---|---|---|---|---|---|---|---|---|---|
.text | 0x1000 | 0x9ab1d | 0x9ac00 | 0a1473f3064dcbc32ef93c5c8a90f3a6 | False | 0.565500681542811 | data | 6.668273581389308 | IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ |
.rdata | 0x9c000 | 0x2fb82 | 0x2fc00 | c9cf2468b60bf4f80f136ed54b3989fb | False | 0.35289185209424084 | data | 5.691811547483722 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ |
.data | 0xcc000 | 0x706c | 0x4800 | 53b9025d545d65e23295e30afdbd16d9 | False | 0.04356553819444445 | DOS executable (block device driver @\273\) | 0.5846666986982398 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
.rsrc | 0xd4000 | 0x46464 | 0x46600 | 34961908343ebb2c4a51a596d90a4662 | False | 0.9059655306394316 | data | 7.844919772873283 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ |
.reloc | 0x11b000 | 0x7594 | 0x7600 | c68ee8931a32d45eb82dc450ee40efc3 | False | 0.7628111758474576 | data | 6.7972128181359786 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ |
Name | RVA | Size | Type | Language | Country | ZLIB Complexity |
---|---|---|---|---|---|---|
RT_ICON | 0xd45a8 | 0x128 | Device independent bitmap graphic, 16 x 32 x 4, image size 192 | English | Great Britain | 0.7466216216216216 |
RT_ICON | 0xd46d0 | 0x128 | Device independent bitmap graphic, 16 x 32 x 4, image size 128, 16 important colors | English | Great Britain | 0.3277027027027027 |
RT_ICON | 0xd47f8 | 0x128 | Device independent bitmap graphic, 16 x 32 x 4, image size 192 | English | Great Britain | 0.3885135135135135 |
RT_ICON | 0xd4920 | 0x2e8 | Device independent bitmap graphic, 32 x 64 x 4, image size 0 | English | Great Britain | 0.3333333333333333 |
RT_ICON | 0xd4c08 | 0x128 | Device independent bitmap graphic, 16 x 32 x 4, image size 0 | English | Great Britain | 0.5 |
RT_ICON | 0xd4d30 | 0xea8 | Device independent bitmap graphic, 48 x 96 x 8, image size 0 | English | Great Britain | 0.2835820895522388 |
RT_ICON | 0xd5bd8 | 0x8a8 | Device independent bitmap graphic, 32 x 64 x 8, image size 0 | English | Great Britain | 0.37906137184115524 |
RT_ICON | 0xd6480 | 0x568 | Device independent bitmap graphic, 16 x 32 x 8, image size 0 | English | Great Britain | 0.23699421965317918 |
RT_ICON | 0xd69e8 | 0x25a8 | Device independent bitmap graphic, 48 x 96 x 32, image size 0 | English | Great Britain | 0.13858921161825727 |
RT_ICON | 0xd8f90 | 0x10a8 | Device independent bitmap graphic, 32 x 64 x 32, image size 0 | English | Great Britain | 0.25070356472795496 |
RT_ICON | 0xda038 | 0x468 | Device independent bitmap graphic, 16 x 32 x 32, image size 0 | English | Great Britain | 0.3173758865248227 |
RT_MENU | 0xda4a0 | 0x50 | data | English | Great Britain | 0.9 |
RT_STRING | 0xda4f0 | 0x594 | data | English | Great Britain | 0.3333333333333333 |
RT_STRING | 0xdaa84 | 0x68a | data | English | Great Britain | 0.2735961768219833 |
RT_STRING | 0xdb110 | 0x490 | data | English | Great Britain | 0.3715753424657534 |
RT_STRING | 0xdb5a0 | 0x5fc | data | English | Great Britain | 0.3087467362924282 |
RT_STRING | 0xdbb9c | 0x65c | data | English | Great Britain | 0.34336609336609336 |
RT_STRING | 0xdc1f8 | 0x466 | data | English | Great Britain | 0.3605683836589698 |
RT_STRING | 0xdc660 | 0x158 | Matlab v4 mat-file (little endian) n, numeric, rows 0, columns 0 | English | Great Britain | 0.502906976744186 |
RT_RCDATA | 0xdc7b8 | 0x3d72c | data | 1.0003416874592757 | ||
RT_GROUP_ICON | 0x119ee4 | 0x76 | data | English | Great Britain | 0.6610169491525424 |
RT_GROUP_ICON | 0x119f5c | 0x14 | data | English | Great Britain | 1.25 |
RT_GROUP_ICON | 0x119f70 | 0x14 | data | English | Great Britain | 1.15 |
RT_GROUP_ICON | 0x119f84 | 0x14 | data | English | Great Britain | 1.25 |
RT_VERSION | 0x119f98 | 0xdc | data | English | Great Britain | 0.6181818181818182 |
RT_MANIFEST | 0x11a074 | 0x3ef | ASCII text, with CRLF line terminators | English | Great Britain | 0.5074478649453823 |
DLL | Import |
---|---|
WSOCK32.dll | gethostbyname, recv, send, socket, inet_ntoa, setsockopt, ntohs, WSACleanup, WSAStartup, sendto, htons, __WSAFDIsSet, select, accept, listen, bind, inet_addr, ioctlsocket, recvfrom, WSAGetLastError, closesocket, gethostname, connect |
VERSION.dll | GetFileVersionInfoW, VerQueryValueW, GetFileVersionInfoSizeW |
WINMM.dll | timeGetTime, waveOutSetVolume, mciSendStringW |
COMCTL32.dll | ImageList_ReplaceIcon, ImageList_Destroy, ImageList_Remove, ImageList_SetDragCursorImage, ImageList_BeginDrag, ImageList_DragEnter, ImageList_DragLeave, ImageList_EndDrag, ImageList_DragMove, InitCommonControlsEx, ImageList_Create |
MPR.dll | WNetGetConnectionW, WNetCancelConnection2W, WNetUseConnectionW, WNetAddConnection2W |
WININET.dll | HttpOpenRequestW, InternetCloseHandle, InternetOpenW, InternetSetOptionW, InternetCrackUrlW, HttpQueryInfoW, InternetQueryOptionW, InternetConnectW, HttpSendRequestW, FtpOpenFileW, FtpGetFileSize, InternetOpenUrlW, InternetReadFile, InternetQueryDataAvailable |
PSAPI.DLL | GetProcessMemoryInfo |
IPHLPAPI.DLL | IcmpSendEcho, IcmpCloseHandle, IcmpCreateFile |
USERENV.dll | DestroyEnvironmentBlock, LoadUserProfileW, CreateEnvironmentBlock, UnloadUserProfile |
UxTheme.dll | IsThemeActive |
KERNEL32.dll | DuplicateHandle, CreateThread, WaitForSingleObject, HeapAlloc, GetProcessHeap, HeapFree, Sleep, GetCurrentThreadId, MultiByteToWideChar, MulDiv, GetVersionExW, IsWow64Process, GetSystemInfo, FreeLibrary, LoadLibraryA, GetProcAddress, SetErrorMode, GetModuleFileNameW, WideCharToMultiByte, lstrcpyW, lstrlenW, GetModuleHandleW, QueryPerformanceCounter, VirtualFreeEx, OpenProcess, VirtualAllocEx, WriteProcessMemory, ReadProcessMemory, CreateFileW, SetFilePointerEx, SetEndOfFile, ReadFile, WriteFile, FlushFileBuffers, TerminateProcess, CreateToolhelp32Snapshot, Process32FirstW, Process32NextW, SetFileTime, GetFileAttributesW, FindFirstFileW, FindClose, GetLongPathNameW, GetShortPathNameW, DeleteFileW, IsDebuggerPresent, CopyFileExW, MoveFileW, CreateDirectoryW, RemoveDirectoryW, SetSystemPowerState, QueryPerformanceFrequency, LoadResource, LockResource, SizeofResource, OutputDebugStringW, GetTempPathW, GetTempFileNameW, DeviceIoControl, LoadLibraryW, GetLocalTime, CompareStringW, GetCurrentThread, EnterCriticalSection, LeaveCriticalSection, GetStdHandle, CreatePipe, InterlockedExchange, TerminateThread, LoadLibraryExW, FindResourceExW, CopyFileW, VirtualFree, FormatMessageW, GetExitCodeProcess, GetPrivateProfileStringW, WritePrivateProfileStringW, GetPrivateProfileSectionW, WritePrivateProfileSectionW, GetPrivateProfileSectionNamesW, FileTimeToLocalFileTime, FileTimeToSystemTime, SystemTimeToFileTime, LocalFileTimeToFileTime, GetDriveTypeW, GetDiskFreeSpaceExW, GetDiskFreeSpaceW, GetVolumeInformationW, SetVolumeLabelW, CreateHardLinkW, SetFileAttributesW, CreateEventW, SetEvent, GetEnvironmentVariableW, SetEnvironmentVariableW, GlobalLock, GlobalUnlock, GlobalAlloc, GetFileSize, GlobalFree, GlobalMemoryStatusEx, Beep, GetSystemDirectoryW, HeapReAlloc, HeapSize, GetComputerNameW, GetWindowsDirectoryW, GetCurrentProcessId, GetProcessIoCounters, CreateProcessW, GetProcessId, SetPriorityClass, VirtualAlloc, GetCurrentDirectoryW, lstrcmpiW, DecodePointer, GetLastError, RaiseException, InitializeCriticalSectionAndSpinCount, DeleteCriticalSection, InterlockedDecrement, InterlockedIncrement, ResetEvent, WaitForSingleObjectEx, IsProcessorFeaturePresent, UnhandledExceptionFilter, SetUnhandledExceptionFilter, GetCurrentProcess, CloseHandle, GetFullPathNameW, GetStartupInfoW, GetSystemTimeAsFileTime, InitializeSListHead, RtlUnwind, SetLastError, TlsAlloc, TlsGetValue, TlsSetValue, TlsFree, EncodePointer, ExitProcess, GetModuleHandleExW, ExitThread, ResumeThread, FreeLibraryAndExitThread, GetACP, GetDateFormatW, GetTimeFormatW, LCMapStringW, GetStringTypeW, GetFileType, SetStdHandle, GetConsoleCP, GetConsoleMode, ReadConsoleW, GetTimeZoneInformation, FindFirstFileExW, IsValidCodePage, GetOEMCP, GetCPInfo, GetCommandLineA, GetCommandLineW, GetEnvironmentStringsW, FreeEnvironmentStringsW, SetEnvironmentVariableA, SetCurrentDirectoryW, FindNextFileW, WriteConsoleW |
USER32.dll | GetKeyboardLayoutNameW, IsCharAlphaW, IsCharAlphaNumericW, IsCharLowerW, IsCharUpperW, GetMenuStringW, GetSubMenu, GetCaretPos, IsZoomed, GetMonitorInfoW, SetWindowLongW, SetLayeredWindowAttributes, FlashWindow, GetClassLongW, TranslateAcceleratorW, IsDialogMessageW, GetSysColor, InflateRect, DrawFocusRect, DrawTextW, FrameRect, DrawFrameControl, FillRect, PtInRect, DestroyAcceleratorTable, CreateAcceleratorTableW, SetCursor, GetWindowDC, GetSystemMetrics, GetActiveWindow, CharNextW, wsprintfW, RedrawWindow, DrawMenuBar, DestroyMenu, SetMenu, GetWindowTextLengthW, CreateMenu, IsDlgButtonChecked, DefDlgProcW, CallWindowProcW, ReleaseCapture, SetCapture, PeekMessageW, GetInputState, UnregisterHotKey, CharLowerBuffW, MonitorFromPoint, MonitorFromRect, LoadImageW, mouse_event, ExitWindowsEx, SetActiveWindow, FindWindowExW, EnumThreadWindows, SetMenuDefaultItem, InsertMenuItemW, IsMenu, ClientToScreen, GetCursorPos, DeleteMenu, CheckMenuRadioItem, GetMenuItemID, GetMenuItemCount, SetMenuItemInfoW, GetMenuItemInfoW, SetForegroundWindow, IsIconic, FindWindowW, SystemParametersInfoW, LockWindowUpdate, SendInput, GetAsyncKeyState, SetKeyboardState, GetKeyboardState, GetKeyState, VkKeyScanW, LoadStringW, DialogBoxParamW, MessageBeep, EndDialog, SendDlgItemMessageW, GetDlgItem, SetWindowTextW, CopyRect, ReleaseDC, GetDC, EndPaint, BeginPaint, GetClientRect, GetMenu, DestroyWindow, EnumWindows, GetDesktopWindow, IsWindow, IsWindowEnabled, IsWindowVisible, EnableWindow, InvalidateRect, GetWindowLongW, GetWindowThreadProcessId, AttachThreadInput, GetFocus, GetWindowTextW, SendMessageTimeoutW, EnumChildWindows, CharUpperBuffW, GetClassNameW, GetParent, GetDlgCtrlID, SendMessageW, MapVirtualKeyW, PostMessageW, GetWindowRect, SetUserObjectSecurity, CloseDesktop, CloseWindowStation, OpenDesktopW, RegisterHotKey, GetCursorInfo, SetWindowPos, CopyImage, AdjustWindowRectEx, SetRect, SetClipboardData, EmptyClipboard, CountClipboardFormats, CloseClipboard, GetClipboardData, IsClipboardFormatAvailable, OpenClipboard, BlockInput, TrackPopupMenuEx, GetMessageW, SetProcessWindowStation, GetProcessWindowStation, OpenWindowStationW, GetUserObjectSecurity, MessageBoxW, DefWindowProcW, MoveWindow, SetFocus, PostQuitMessage, KillTimer, CreatePopupMenu, RegisterWindowMessageW, SetTimer, ShowWindow, CreateWindowExW, RegisterClassExW, LoadIconW, LoadCursorW, GetSysColorBrush, GetForegroundWindow, MessageBoxA, DestroyIcon, DispatchMessageW, keybd_event, TranslateMessage, ScreenToClient |
GDI32.dll | EndPath, DeleteObject, GetTextExtentPoint32W, ExtCreatePen, StrokeAndFillPath, GetDeviceCaps, SetPixel, CloseFigure, LineTo, AngleArc, MoveToEx, Ellipse, CreateCompatibleBitmap, CreateCompatibleDC, PolyDraw, BeginPath, Rectangle, SetViewportOrgEx, GetObjectW, SetBkMode, RoundRect, SetBkColor, CreatePen, SelectObject, StretchBlt, CreateSolidBrush, SetTextColor, CreateFontW, GetTextFaceW, GetStockObject, CreateDCW, GetPixel, DeleteDC, GetDIBits, StrokePath |
COMDLG32.dll | GetSaveFileNameW, GetOpenFileNameW |
ADVAPI32.dll | GetAce, RegEnumValueW, RegDeleteValueW, RegDeleteKeyW, RegEnumKeyExW, RegSetValueExW, RegOpenKeyExW, RegCloseKey, RegQueryValueExW, RegConnectRegistryW, InitializeSecurityDescriptor, InitializeAcl, AdjustTokenPrivileges, OpenThreadToken, OpenProcessToken, LookupPrivilegeValueW, DuplicateTokenEx, CreateProcessAsUserW, CreateProcessWithLogonW, GetLengthSid, CopySid, LogonUserW, AllocateAndInitializeSid, CheckTokenMembership, FreeSid, GetTokenInformation, RegCreateKeyExW, GetSecurityDescriptorDacl, GetAclInformation, GetUserNameW, AddAce, SetSecurityDescriptorDacl, InitiateSystemShutdownExW |
SHELL32.dll | DragFinish, DragQueryPoint, ShellExecuteExW, DragQueryFileW, SHEmptyRecycleBinW, SHGetPathFromIDListW, SHBrowseForFolderW, SHCreateShellItem, SHGetDesktopFolder, SHGetSpecialFolderLocation, SHGetFolderPathW, SHFileOperationW, ExtractIconExW, Shell_NotifyIconW, ShellExecuteW |
ole32.dll | CoTaskMemAlloc, CoTaskMemFree, CLSIDFromString, ProgIDFromCLSID, CLSIDFromProgID, OleSetMenuDescriptor, MkParseDisplayName, OleSetContainedObject, CoCreateInstance, IIDFromString, StringFromGUID2, CreateStreamOnHGlobal, OleInitialize, OleUninitialize, CoInitialize, CoUninitialize, GetRunningObjectTable, CoGetInstanceFromFile, CoGetObject, CoInitializeSecurity, CoCreateInstanceEx, CoSetProxyBlanket |
OLEAUT32.dll | CreateStdDispatch, CreateDispTypeInfo, UnRegisterTypeLib, UnRegisterTypeLibForUser, RegisterTypeLibForUser, RegisterTypeLib, LoadTypeLibEx, VariantCopyInd, SysReAllocString, SysFreeString, VariantChangeType, SafeArrayDestroyData, SafeArrayUnaccessData, SafeArrayAccessData, SafeArrayAllocData, SafeArrayAllocDescriptorEx, SafeArrayCreateVector, SysStringLen, QueryPathOfRegTypeLib, SysAllocString, VariantInit, VariantClear, DispCallFunc, VariantTimeToSystemTime, VarR8FromDec, SafeArrayGetVartype, SafeArrayDestroyDescriptor, VariantCopy, OleLoadPicture |
Language of compilation system | Country where language is spoken | Map |
---|---|---|
English | Great Britain |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Sep 27, 2024 19:04:01.427808046 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:01.427809000 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:01.755950928 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:09.156774044 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.156811953 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.156866074 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.158289909 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.158299923 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.567976952 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:09.568017006 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:09.568087101 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:09.569013119 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:09.569032907 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:09.813024998 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.813246012 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.813263893 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.813653946 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.813715935 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.814342976 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.814383030 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.815500975 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.815557003 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.815666914 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:09.815679073 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:09.857702971 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:10.106432915 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:10.107676983 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:10.107723951 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:10.109059095 CEST | 49712 | 443 | 192.168.2.6 | 142.250.185.78 |
Sep 27, 2024 19:04:10.109078884 CEST | 443 | 49712 | 142.250.185.78 | 192.168.2.6 |
Sep 27, 2024 19:04:10.120299101 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.120326996 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.120409966 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.120891094 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.120904922 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.361449003 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.361517906 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.367326975 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.367332935 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.367574930 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.369688034 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.369771957 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.369776964 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.370003939 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.415395975 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.541829109 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.541938066 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.542196989 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.542393923 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.542412996 CEST | 443 | 49714 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:10.542423964 CEST | 49714 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:10.751821995 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.794279099 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.794291019 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.794858932 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.794919014 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.795871973 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.795922995 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.801649094 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.801728964 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.801825047 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.842011929 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:10.842025995 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:10.888887882 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:11.029489040 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:11.029489040 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:11.075942039 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:11.075963974 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:11.076016903 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:11.076028109 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:11.076045990 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:11.076092005 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:11.111490011 CEST | 49717 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:11.111502886 CEST | 443 | 49717 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:11.357681990 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:12.367436886 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:12.367470026 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:12.367547989 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:12.367932081 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:12.367944002 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:13.013592005 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:13.013891935 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:13.013900042 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:13.015561104 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:13.015620947 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:13.016812086 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:13.016891956 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:13.060815096 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:13.060822964 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:13.097043991 CEST | 443 | 49705 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:13.097197056 CEST | 49705 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:13.107711077 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:13.938832998 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:13.938863039 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:13.938946962 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:13.940655947 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:13.940669060 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.631555080 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.631628990 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.635270119 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.635278940 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.635524988 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.675679922 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.689677954 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.735429049 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.904270887 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.904342890 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.904392958 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.904525042 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.904546022 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.904565096 CEST | 49725 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.904580116 CEST | 443 | 49725 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.948864937 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.948904991 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:14.948966980 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.949870110 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:14.949884892 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:16.504204988 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:16.504307985 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:16.505820990 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:16.505831003 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:16.506159067 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:16.507419109 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:16.551469088 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:17.047260046 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:17.047442913 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:17.047626019 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:17.048176050 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:17.048197031 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:17.048207998 CEST | 49728 | 443 | 192.168.2.6 | 184.28.90.27 |
Sep 27, 2024 19:04:17.048213959 CEST | 443 | 49728 | 184.28.90.27 | 192.168.2.6 |
Sep 27, 2024 19:04:18.592734098 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:18.592782021 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:18.592848063 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:18.593812943 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:18.593830109 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.235528946 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.235551119 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.235639095 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.235944986 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.235956907 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.404032946 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.404162884 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.406605005 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.406616926 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.406855106 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.408687115 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.408747911 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.408754110 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.408874989 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.451411963 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.582493067 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.582700968 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.582767010 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.582907915 CEST | 49742 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:19.582926035 CEST | 443 | 49742 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:19.885538101 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.885787964 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.885812998 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.886217117 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.886291027 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.886912107 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.886969090 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.888132095 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.888202906 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.888389111 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:19.888396978 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:19.941982985 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.217905998 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.218044996 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.218106031 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.218122005 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.218158960 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.218167067 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.218192101 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.218472004 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.225898981 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.225981951 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.232531071 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.232590914 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.232636929 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.232692003 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.241070032 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.241220951 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.248956919 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.248996973 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.249042034 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.249049902 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.249090910 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.308309078 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.308346987 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.308365107 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.308374882 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.308408022 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.308420897 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.308427095 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.308495998 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.313581944 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.313616991 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.313662052 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.313672066 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.313715935 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.320019960 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.320080996 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.325947046 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.326004982 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.326014996 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.332783937 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.332856894 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.332865000 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.339009047 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.339067936 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.339076042 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.339279890 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:20.339350939 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.339649916 CEST | 49745 | 443 | 192.168.2.6 | 216.58.212.142 |
Sep 27, 2024 19:04:20.339668036 CEST | 443 | 49745 | 216.58.212.142 | 192.168.2.6 |
Sep 27, 2024 19:04:21.052350044 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.052382946 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.052447081 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.052680016 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.052717924 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.052822113 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.062491894 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.062503099 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.062638044 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.062652111 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.703290939 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.706202984 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.706231117 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.706758022 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.706846952 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.707799911 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.707885027 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.711713076 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.711813927 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.712646008 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.712652922 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.715517044 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.715929985 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.715944052 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.717164040 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.717236042 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.717644930 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:21.717674971 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:21.717755079 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:21.718905926 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:21.718914032 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:21.719715118 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.719799995 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.720216036 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.720290899 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.720678091 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.720685959 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:21.761514902 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:21.761605978 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.003369093 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.004580021 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.004755020 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.005219936 CEST | 49750 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.005235910 CEST | 443 | 49750 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.006469965 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.006494999 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.007816076 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.008009911 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.008023024 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.018078089 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.018591881 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.018666029 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.019117117 CEST | 49751 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.019139051 CEST | 443 | 49751 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.019656897 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.019695044 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.023355961 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.023575068 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.023593903 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.393718004 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.393876076 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.397578001 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.397586107 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.397855997 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.442703962 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.487538099 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.535403013 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.652966022 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.656564951 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.656577110 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.656948090 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.657005072 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.657686949 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.657727003 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.658473969 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.658534050 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.658721924 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.658737898 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.658747911 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.671684027 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.672281981 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.672307014 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.673043966 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.673204899 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.673775911 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.673918009 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.673962116 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.674042940 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.674177885 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.674177885 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.674186945 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.699418068 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.708470106 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.708913088 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.708935022 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.708941936 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.708954096 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.708985090 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.708992004 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.709016085 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.709037066 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.709037066 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.709063053 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.709315062 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.709372997 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.709379911 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.709530115 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.709629059 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.715406895 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.720727921 CEST | 49754 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:04:22.720745087 CEST | 443 | 49754 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:04:22.723298073 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.878952026 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.879317999 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.879404068 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.892784119 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.894229889 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.894306898 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.907752037 CEST | 49755 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.907768011 CEST | 443 | 49755 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.924616098 CEST | 49756 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:22.924642086 CEST | 443 | 49756 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:22.934850931 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:22.934915066 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:22.935025930 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:23.418953896 CEST | 49705 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:23.419055939 CEST | 49705 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:23.423754930 CEST | 443 | 49705 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:23.423891068 CEST | 443 | 49705 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:23.461793900 CEST | 49763 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:23.461827993 CEST | 443 | 49763 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:23.461946964 CEST | 49763 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:23.462280989 CEST | 49763 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:23.462297916 CEST | 443 | 49763 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:23.482384920 CEST | 49721 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:23.482413054 CEST | 443 | 49721 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:23.482709885 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:23.482719898 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:23.482784033 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:23.483042002 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:23.483052969 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.087415934 CEST | 443 | 49763 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:24.087517977 CEST | 49763 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:24.117571115 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.117845058 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.117867947 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.118979931 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.119461060 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.119627953 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.119632006 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.160410881 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.160423040 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.387368917 CEST | 51611 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:24.388144970 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388197899 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388248920 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.388259888 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388294935 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388324976 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388339043 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.388345957 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388485909 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.388573885 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388628006 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.388834953 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.389525890 CEST | 49764 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:04:24.389534950 CEST | 443 | 49764 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:04:24.392180920 CEST | 53 | 51611 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:24.392251968 CEST | 51611 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:24.397447109 CEST | 53 | 51611 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:24.841361046 CEST | 51611 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:24.846621037 CEST | 53 | 51611 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:24.846698046 CEST | 51611 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:28.257564068 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.257620096 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:28.257791996 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.259047985 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.259063005 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:28.981112957 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:28.981488943 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.981518030 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:28.982027054 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:28.982345104 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.982425928 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:28.982511997 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.982564926 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:28.982573986 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:29.314191103 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:29.315233946 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:29.315300941 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:29.316368103 CEST | 51612 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:29.316389084 CEST | 443 | 51612 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:34.235579014 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:34.235630035 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:34.235865116 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:34.236565113 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:34.236587048 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.109533072 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.109625101 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:35.115396976 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:35.115420103 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.115637064 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.117614985 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:35.117662907 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:35.117671967 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.117829084 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:35.159406900 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.286753893 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.286919117 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.287398100 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:35.287436962 CEST | 443 | 51613 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:35.287461042 CEST | 51613 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:43.239808083 CEST | 443 | 49763 | 173.222.162.64 | 192.168.2.6 |
Sep 27, 2024 19:04:43.239934921 CEST | 49763 | 443 | 192.168.2.6 | 173.222.162.64 |
Sep 27, 2024 19:04:51.118370056 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.118402004 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.118493080 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.118803978 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.118819952 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.428549051 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.428580999 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.428674936 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.428962946 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.428977013 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.790189028 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.794137955 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.794152021 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.794954062 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.798440933 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.798521996 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:51.798639059 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.798662901 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:51.798669100 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.092155933 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.093219995 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.093292952 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.093421936 CEST | 51615 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.093440056 CEST | 443 | 51615 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.152575970 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.152894974 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.152911901 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.153445959 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.153754950 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.153837919 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.153933048 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.153949022 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.153966904 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.233438969 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:52.233467102 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:52.233566999 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:52.234169006 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:52.234179020 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:52.456484079 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.456852913 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.456928015 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.457357883 CEST | 51616 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.457375050 CEST | 443 | 51616 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.554225922 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.554263115 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:52.554358959 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.554640055 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:52.554652929 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.026323080 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.026494026 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.031910896 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.031925917 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.032671928 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.034800053 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.034869909 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.034874916 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.035012007 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.079404116 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.192243099 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.192650080 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:53.192670107 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.193180084 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.193505049 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:53.193608999 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.193674088 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:53.193687916 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:53.193701029 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.211524963 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.211813927 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.211926937 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.212287903 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.212304115 CEST | 443 | 51617 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:04:53.212318897 CEST | 51617 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:04:53.407743931 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.408305883 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:04:53.408405066 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:53.408535957 CEST | 51618 | 443 | 192.168.2.6 | 142.250.186.174 |
Sep 27, 2024 19:04:53.408565044 CEST | 443 | 51618 | 142.250.186.174 | 192.168.2.6 |
Sep 27, 2024 19:05:01.021248102 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.021295071 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.021358967 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.022021055 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.022036076 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.699261904 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.699412107 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.701272964 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.701284885 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.701658964 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.710537910 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.751401901 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.967344999 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.967381954 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.967425108 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.967519999 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.967552900 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.967580080 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.967600107 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.968235016 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.968271971 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.968293905 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.968302965 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.968328953 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.968964100 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.969018936 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.974339008 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.974360943 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:01.974370956 CEST | 51619 | 443 | 192.168.2.6 | 52.165.165.26 |
Sep 27, 2024 19:05:01.974378109 CEST | 443 | 51619 | 52.165.165.26 | 192.168.2.6 |
Sep 27, 2024 19:05:10.370270967 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:10.370316029 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:10.370505095 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:10.371375084 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:10.371398926 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.259227037 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.259368896 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.261275053 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.261285067 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.262162924 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.264344931 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.264436960 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.264448881 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.264631987 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.311395884 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.436341047 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.436553001 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.436979055 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.437005997 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:11.437024117 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.437024117 CEST | 51621 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:11.437033892 CEST | 443 | 51621 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:12.412662983 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:12.412704945 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:12.412818909 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:12.413067102 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:12.413084030 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:13.057754993 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:13.086029053 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:13.086050034 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:13.087373018 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:13.087827921 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:13.088006020 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:13.129816055 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:21.951656103 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:21.951694012 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:21.951766014 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:21.951997042 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:21.952009916 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.070427895 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.070472956 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.070552111 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.070899010 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.070914030 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.601996899 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.602550030 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.602562904 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.603077888 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.603818893 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.603903055 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.603987932 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.604002953 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.604018927 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.716135979 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.716510057 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.716531038 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.717041016 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.717523098 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.717606068 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.717710972 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.717742920 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.717749119 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.903429985 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.903789997 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.903912067 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.904442072 CEST | 51624 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:22.904459000 CEST | 443 | 51624 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:22.956176996 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:22.956334114 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:22.956403017 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:23.028098106 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:23.028476000 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:23.028537035 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:23.028635025 CEST | 51625 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:23.028655052 CEST | 443 | 51625 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:36.850455999 CEST | 51622 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:05:36.850472927 CEST | 443 | 51622 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:05:37.031333923 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.031402111 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.031516075 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.032253981 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.032269001 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.814918995 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.815073013 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.819355965 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.819366932 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.819802046 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.827207088 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.827275038 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.827279091 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.827415943 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.875391006 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.997508049 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.997746944 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.997916937 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.998025894 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:37.998039007 CEST | 443 | 51627 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:05:37.998049974 CEST | 51627 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:05:41.396552086 CEST | 49704 | 80 | 192.168.2.6 | 199.232.214.172 |
Sep 27, 2024 19:05:41.403824091 CEST | 80 | 49704 | 199.232.214.172 | 192.168.2.6 |
Sep 27, 2024 19:05:41.403872967 CEST | 49704 | 80 | 192.168.2.6 | 199.232.214.172 |
Sep 27, 2024 19:05:53.819674015 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:53.819710016 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:53.819782972 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:53.820226908 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:53.820236921 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:53.912846088 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:53.912875891 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:53.912976980 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:53.913345098 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:53.913352966 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.464843988 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.465352058 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.465368986 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.466650963 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.466979027 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.467150927 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.467152119 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.467170000 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.467264891 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.519586086 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.565747976 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.566473961 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.566488028 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.567109108 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.567444086 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.567558050 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.567626953 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.567647934 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.567660093 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.767843962 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.768449068 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.768501997 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.768596888 CEST | 51629 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.768611908 CEST | 443 | 51629 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.874269009 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.874775887 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:05:54.874855042 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.875195026 CEST | 51630 | 443 | 192.168.2.6 | 142.250.181.238 |
Sep 27, 2024 19:05:54.875209093 CEST | 443 | 51630 | 142.250.181.238 | 192.168.2.6 |
Sep 27, 2024 19:06:08.605429888 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:08.605457067 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:08.605540037 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:08.606184006 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:08.606198072 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.498025894 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.498100996 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.499990940 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.499996901 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.500801086 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.502830982 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.502897024 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.502901077 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.503036022 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.547399998 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.677262068 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.677509069 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:09.677563906 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.677757025 CEST | 51631 | 443 | 192.168.2.6 | 40.113.110.67 |
Sep 27, 2024 19:06:09.677771091 CEST | 443 | 51631 | 40.113.110.67 | 192.168.2.6 |
Sep 27, 2024 19:06:12.471415043 CEST | 51632 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:06:12.471450090 CEST | 443 | 51632 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:06:12.471544027 CEST | 51632 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:06:12.471795082 CEST | 51632 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:06:12.471810102 CEST | 443 | 51632 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:06:13.102976084 CEST | 443 | 51632 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:06:13.103274107 CEST | 51632 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:06:13.103298903 CEST | 443 | 51632 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:06:13.103789091 CEST | 443 | 51632 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:06:13.104207993 CEST | 51632 | 443 | 192.168.2.6 | 142.250.184.196 |
Sep 27, 2024 19:06:13.104286909 CEST | 443 | 51632 | 142.250.184.196 | 192.168.2.6 |
Sep 27, 2024 19:06:13.145075083 CEST | 51632 | 443 | 192.168.2.6 | 142.250.184.196 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Sep 27, 2024 19:04:09.047698975 CEST | 64348 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:09.047856092 CEST | 57959 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:09.054173946 CEST | 53 | 49556 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:09.054611921 CEST | 53 | 64348 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:09.055521965 CEST | 53 | 57959 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:09.055811882 CEST | 53 | 52173 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:10.112565041 CEST | 63461 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:10.112740040 CEST | 57493 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:10.119524956 CEST | 53 | 63461 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:10.119842052 CEST | 53 | 57493 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:10.159979105 CEST | 53 | 57279 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:12.358933926 CEST | 53867 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:12.359097958 CEST | 61682 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:12.366200924 CEST | 53 | 53867 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:12.366494894 CEST | 53 | 61682 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:13.684511900 CEST | 53 | 55125 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:16.830647945 CEST | 53 | 52730 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:19.226218939 CEST | 64248 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:19.226473093 CEST | 64996 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:19.233165979 CEST | 53 | 64248 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:19.233208895 CEST | 53 | 64996 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:20.883095026 CEST | 61404 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:20.883625984 CEST | 52680 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:04:20.889816999 CEST | 53 | 61404 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:20.890446901 CEST | 53 | 52680 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:24.386925936 CEST | 53 | 62526 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:27.231889963 CEST | 53 | 61920 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:04:46.057312965 CEST | 53 | 57294 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:05:08.631366014 CEST | 53 | 59337 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:05:08.812475920 CEST | 53 | 56242 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:05:21.284970999 CEST | 53 | 61788 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:05:21.944036007 CEST | 50571 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:05:21.944253922 CEST | 61001 | 53 | 192.168.2.6 | 1.1.1.1 |
Sep 27, 2024 19:05:21.951097012 CEST | 53 | 61001 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:05:21.951109886 CEST | 53 | 50571 | 1.1.1.1 | 192.168.2.6 |
Sep 27, 2024 19:05:36.858309984 CEST | 53 | 55202 | 1.1.1.1 | 192.168.2.6 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Sep 27, 2024 19:04:09.047698975 CEST | 192.168.2.6 | 1.1.1.1 | 0x7aca | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 27, 2024 19:04:09.047856092 CEST | 192.168.2.6 | 1.1.1.1 | 0x57f6 | Standard query (0) | 65 | IN (0x0001) | false | |
Sep 27, 2024 19:04:10.112565041 CEST | 192.168.2.6 | 1.1.1.1 | 0x21f7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 27, 2024 19:04:10.112740040 CEST | 192.168.2.6 | 1.1.1.1 | 0x47df | Standard query (0) | 65 | IN (0x0001) | false | |
Sep 27, 2024 19:04:12.358933926 CEST | 192.168.2.6 | 1.1.1.1 | 0x1482 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 27, 2024 19:04:12.359097958 CEST | 192.168.2.6 | 1.1.1.1 | 0x2aaa | Standard query (0) | 65 | IN (0x0001) | false | |
Sep 27, 2024 19:04:19.226218939 CEST | 192.168.2.6 | 1.1.1.1 | 0xe607 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 27, 2024 19:04:19.226473093 CEST | 192.168.2.6 | 1.1.1.1 | 0xadd1 | Standard query (0) | 65 | IN (0x0001) | false | |
Sep 27, 2024 19:04:20.883095026 CEST | 192.168.2.6 | 1.1.1.1 | 0x79f8 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 27, 2024 19:04:20.883625984 CEST | 192.168.2.6 | 1.1.1.1 | 0xe66b | Standard query (0) | 65 | IN (0x0001) | false | |
Sep 27, 2024 19:05:21.944036007 CEST | 192.168.2.6 | 1.1.1.1 | 0xdbdf | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 27, 2024 19:05:21.944253922 CEST | 192.168.2.6 | 1.1.1.1 | 0x4c98 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Sep 27, 2024 19:04:09.054611921 CEST | 1.1.1.1 | 192.168.2.6 | 0x7aca | No error (0) | 142.250.185.78 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:09.055521965 CEST | 1.1.1.1 | 192.168.2.6 | 0x57f6 | No error (0) | 65 | IN (0x0001) | false | |||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | youtube-ui.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 216.58.212.142 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.186.78 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.185.78 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 172.217.18.110 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.184.238 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.185.238 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.184.206 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 216.58.206.46 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.185.174 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.186.142 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.185.110 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.181.238 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.74.206 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.185.142 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.186.174 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119524956 CEST | 1.1.1.1 | 192.168.2.6 | 0x21f7 | No error (0) | 142.250.185.206 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119842052 CEST | 1.1.1.1 | 192.168.2.6 | 0x47df | No error (0) | youtube-ui.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:10.119842052 CEST | 1.1.1.1 | 192.168.2.6 | 0x47df | No error (0) | 65 | IN (0x0001) | false | |||
Sep 27, 2024 19:04:12.366200924 CEST | 1.1.1.1 | 192.168.2.6 | 0x1482 | No error (0) | 142.250.184.196 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:12.366494894 CEST | 1.1.1.1 | 192.168.2.6 | 0x2aaa | No error (0) | 65 | IN (0x0001) | false | |||
Sep 27, 2024 19:04:19.233165979 CEST | 1.1.1.1 | 192.168.2.6 | 0xe607 | No error (0) | www3.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:19.233165979 CEST | 1.1.1.1 | 192.168.2.6 | 0xe607 | No error (0) | 216.58.212.142 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:19.233208895 CEST | 1.1.1.1 | 192.168.2.6 | 0xadd1 | No error (0) | www3.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Sep 27, 2024 19:04:20.889816999 CEST | 1.1.1.1 | 192.168.2.6 | 0x79f8 | No error (0) | 142.250.186.174 | A (IP address) | IN (0x0001) | false | ||
Sep 27, 2024 19:05:21.951109886 CEST | 1.1.1.1 | 192.168.2.6 | 0xdbdf | No error (0) | 142.250.181.238 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.6 | 49712 | 142.250.185.78 | 443 | 4460 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-09-27 17:04:09 UTC | 839 | OUT | |
2024-09-27 17:04:10 UTC | 1919 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
1 | 192.168.2.6 | 49714 | 40.113.110.67 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-09-27 17:04:10 UTC | 71 | OUT | |
2024-09-27 17:04:10 UTC | 249 | OUT | |
2024-09-27 17:04:10 UTC | 1084 | OUT | |
2024-09-27 17:04:10 UTC | 218 | OUT | |
2024-09-27 17:04:10 UTC | 14 | IN | |
2024-09-27 17:04:10 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.6 | 49717 | 216.58.212.142 | 443 | 4460 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-09-27 17:04:10 UTC | 882 | OUT | |
2024-09-27 17:04:11 UTC | 2530 | IN |