Windows Analysis Report
http://clicks.sharefile.com/f/a/SncqrsfZOz93buaMHHZ1EQ~~/AACuKQA~/RgRo3Qm5P4Q1AWh0dHBzOi8vY2FtcGFpZ25zdHVkaW8uc2hhcmVmaWxlLmNvbS9yL2IxZTJlYWMzYjA5ZGVkZTJjMjgzMmVlYzk_Y3Q9WVRvMU9udHpPalk2SW5OdmRYSmpaU0k3WVRveU9udHBPakE3Y3pveE5Eb2lZMkZ0Y0dGcFoyNHVaWFpsYm5RaU8yazZNVHRwT2pnd08zMXpPalU2SW1WdFlXbHNJanRwT2

Overview

General Information

Sample URL:	http://clicks.sharefile.com/f/a/SncqrsfZOz93buaMHHZ1EQ~~/AACuKQA~/RgRo3Qm5P4Q1AWh0dHBzOi8vY2FtcGFpZ25zdHVkaW8uc2hhcmVmaWxlLmNvbS9yL2IxZTJlYWMzYjA5ZGVkZTJjMjgzMmVlYzk_Y3Q9WVRvMU9udHpPalk2SW5OdmRYSmpaU0
Analysis ID:	1523116
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Found iframes

HTML body contains low number of good links

HTML page contains hidden javascript code

Classification

Signatures

Found iframes

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: Iframe src: https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: Iframe src: https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com

HTML body contains low number of good links

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain

HTTP Parser: Number of links: 1

HTML page contains hidden javascript code

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain

HTTP Parser: Base64 decoded: {"ApiUrl":"https://secure.sharefile.com/sf/v3/","OAuthUrl":"https://secure.sharefile.com/oauth/oauthapi.aspx","CachePath":"/","ErrorCorrelationId":"6ce5417f-d23c-45f0-ab8f-85bbb893b22a","Theme":{"Name":"onecitrix"},"PageWidth":"device-width","FixViewport"...

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="author".. found
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="author".. found

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="copyright".. found
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /r/b1e2eac3b09dede2c2832eec9?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319& HTTP/1.1Host: campaignstudio.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Authentication/Login?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /login HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=MJcPaFxn8M2lrgvjo3jTPR9n3KrRT2he2KBXfiQZu4H36QlOT+LP9q36xgsaT5iH+u1l7q2+ZaHt5B11qHo7v7NC9wQUPyHR2sfpecERH8Kt+os8Zq5t5iSGUdpp0+TVgEzEQ8PI3rI3xEx/ANJIQg9hOmenlD2wK123ydPYtnNg; AWSALBTGCORS=MJcPaFxn8M2lrgvjo3jTPR9n3KrRT2he2KBXfiQZu4H36QlOT+LP9q36xgsaT5iH+u1l7q2+ZaHt5B11qHo7v7NC9wQUPyHR2sfpecERH8Kt+os8Zq5t5iSGUdpp0+TVgEzEQ8PI3rI3xEx/ANJIQg9hOmenlD2wK123ydPYtnNg; AWSALB=xQxVu2aaH0NrKOEkt0IaJN0ls+wTWNm6w+BWF+77pGdOCMb47AShRuSIQO9JwWxoioqgwbNYOsOu1HEOIdgylUxq45vR1gN72r9RuqZN7nxXEofH0o/9e1tn6KIm; AWSALBCORS=xQxVu2aaH0NrKOEkt0IaJN0ls+wTWNm6w+BWF+77pGdOCMb47AShRuSIQO9JwWxoioqgwbNYOsOu1HEOIdgylUxq45vR1gN72r9RuqZN7nxXEofH0o/9e1tn6KIm
Source: global traffic	HTTP traffic detected: GET /Authentication/StartLogin?client_id=Dzi4UPUAg5l8beKdioecdcnmHUTWWln6&state=f4uVqL4mHe4wOn7HGYp3uA--&redirect_uri=https%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin&saml_noiframe=False&subdomain=secure&autoredirect=False&requirev3=False&fix_mie_viewport=False&PromptLoginAfterActivation=False&device_id_supported=True&wcs_auth_login_url=https%3a%2f%2fauth.sharefile.io%2fconnect%2fauthorize%3fclient_id%3dDzi4UPUAg5l8beKdioecdcnmHUTWWln6%26state%3df4uVqL4mHe4wOn7HGYp3uA--%26acr_values%3dtenant%253Asecure%26response_type%3dcode%26redirect_uri%3dhttps%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin%26scope%3dsharefile%253Arestapi%253Av3%2520sharefile%253Arestapi%253Av3-internal%2520offline_access%2520openid HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=OghBqkRMdeCerenm4ijvxcWPBmK7nxBUebAl2bgCnB+SZugwYfwNrB/nLhfUt9FcYxN26XrYkEkddWO/35/QQ9YVALIVZTna6J8XVe96EyNeSQrer4YyalP/O+yCYQSvrosGO8HgDHr+MH+K5ghcGIAdA4bQp1xhBUH+EPiTaXhl; AWSALBTGCORS=OghBqkRMdeCerenm4ijvxcWPBmK7nxBUebAl2bgCnB+SZugwYfwNrB/nLhfUt9FcYxN26XrYkEkddWO/35/QQ9YVALIVZTna6J8XVe96EyNeSQrer4YyalP/O+yCYQSvrosGO8HgDHr+MH+K5ghcGIAdA4bQp1xhBUH+EPiTaXhl; AWSALB=e8wExK9+NBJy5fo+BCNPL8V6kNwH1m7/Va6g382K6OLnTczRwMprE/SeLbVnjOtl7ecLgQr1gmUIncJyj5pbs4KG8TcSUn+R9tzX/3Z7EwmT6YXkhza3qqQ+IkxU; AWSALBCORS=e8wExK9+NBJy5fo+BCNPL8V6kNwH1m7/Va6g382K6OLnTczRwMprE/SeLbVnjOtl7ecLgQr1gmUIncJyj5pbs4KG8TcSUn+R9tzX/3Z7EwmT6YXkhza3qqQ+IkxU; SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca
Source: global traffic	HTTP traffic detected: GET /Authentication/Login HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=CLKuR0R1cPjbBsP57I4sGf2rBPKf7t51rZ1MS3Xiz63TtIw6X1rZ1Wp8wwiodGO+Wa9fWiWY6yLovot/ixC8JbXkg/fmW/yw8DJk9EniPsu9S+OkPapPfMmXjfqmKUiAtZeGSWlr+e83N/JnmxFNNQ8HkFxGRkBMOn8wxL4itA4F; AWSALBTGCORS=CLKuR0R1cPjbBsP57I4sGf2rBPKf7t51rZ1MS3Xiz63TtIw6X1rZ1Wp8wwiodGO+Wa9fWiWY6yLovot/ixC8JbXkg/fmW/yw8DJk9EniPsu9S+OkPapPfMmXjfqmKUiAtZeGSWlr+e83N/JnmxFNNQ8HkFxGRkBMOn8wxL4itA4F; AWSALB=LGbLBiunbVANG3Dzsz7wUUzKDVYZ3WBFx4F+EwrPsMpwR71g2YKbQyCQjE2qDy1gm3pOCI4ScNFkVC4mYI8XbvKF4Ibj7T5ZSZX8y/YLG90wQy3RcH6c6DKWaGza; AWSALBCORS=LGbLBiunbVANG3Dzsz7wUUzKDVYZ3WBFx4F+EwrPsMpwR71g2YKbQyCQjE2qDy1gm3pOCI4ScNFkVC4mYI8XbvKF4Ibj7T5ZSZX8y/YLG90wQy3RcH6c6DKWaGza; clientRequest=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%3D%3D
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2o HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/124.2e4f676c.chunk.js?v=CID9KQVn9a2YQpRL3fogqsTVNN7uC9-fVaEU1yuHjU0 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/258.141c3426.chunk.js?v=GX7-l4A8TbdDUjtkrqXFGGlNpXtyqvHSbcA-tcun8h4 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/270.6be85df0.chunk.js?v=0BVoMzsUMQ521uV-L2dhESZ809Gahn-9nBV3D-3SHaQ HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/32.15fb0945.chunk.js?v=haT9MhgAEKklEYeYIFgF1HweAT81fD1jP9iTINJETM8 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/516.bb5af45f.chunk.js?v=HkEAqtfibkRGDiEw4UOvO5dc97t7Doq7O21Jm-yGzro HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /notice?domain=sharefile.com&c=teconsent&js=nj&noticeType=bb&text=true&gtm=1&fade=30000 HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/619.103cb058.chunk.js?v=t3w-7kgESs6gtUDVhObF9osWSWG3_i_tauIE75EVs8g HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/636.b86a29b1.chunk.js?v=gZ4giYab1Nf806qu_gNgaRiu9yIYeEF_8fhB3SZsyvw HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/658.ab03e1a4.chunk.js?v=kwL_toi540AiRh-6wuk1c-WPNpO7TPxlPH2OTM1NiC4 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/516.bb5af45f.chunk.js?v=HkEAqtfibkRGDiEw4UOvO5dc97t7Doq7O21Jm-yGzro HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=lHZA0XJ2nT38sOqV5LeN3OgP/0lLR2nsqqWfXTkTJF+znod68VcLlplGe7Ar477hHQUYem/nlvBFLgHrL4IJn0OeblXOKVCAn5TLRtZKEgX/Jw+nigkVOcUcdx/wYMqsWSl3CQ433pR7D9VUNepx7oTLBrjS6PK2F0Nd9PQH+Igr; AWSALBTGCORS=lHZA0XJ2nT38sOqV5LeN3OgP/0lLR2nsqqWfXTkTJF+znod68VcLlplGe7Ar477hHQUYem/nlvBFLgHrL4IJn0OeblXOKVCAn5TLRtZKEgX/Jw+nigkVOcUcdx/wYMqsWSl3CQ433pR7D9VUNepx7oTLBrjS6PK2F0Nd9PQH+Igr; AWSALB=ZkxciByYDTiERVRahfL4BJ3BC4TLAqitIG/F7Dgx9pguyim0mXBUU1oy1Z8vw/IRUCdLcGjwkj+DVt6LizRsdbkPiDmkebCtKcul5VajwATE9aC/oyjk1YWIO+av; AWSALBCORS=ZkxciByYDTiERVRahfL4BJ3BC4TLAqitIG/F7Dgx9pguyim0mXBUU1oy1Z8vw/IRUCdLcGjwkj+DVt6LizRsdbkPiDmkebCtKcul5VajwATE9aC/oyjk1YWIO+av
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/124.2e4f676c.chunk.js?v=CID9KQVn9a2YQpRL3fogqsTVNN7uC9-fVaEU1yuHjU0 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/726.b72a5bb0.chunk.js?v=MQwbgb4Lbb6pR0AtkP0wL-Y4sza8X6QviHy-kTXJvss HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/270.6be85df0.chunk.js?v=0BVoMzsUMQ521uV-L2dhESZ809Gahn-9nBV3D-3SHaQ HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/32.15fb0945.chunk.js?v=haT9MhgAEKklEYeYIFgF1HweAT81fD1jP9iTINJETM8 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/258.141c3426.chunk.js?v=GX7-l4A8TbdDUjtkrqXFGGlNpXtyqvHSbcA-tcun8h4 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/748.0bde3ed9.chunk.js?v=FQaynjASfZm6cky4DqwdWXbyUpmvAfV65CLsSDqZB1Q HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/757.79916e6d.chunk.js?v=kAfS3hC4IaXWeWjf4ip6vdL-u7p7h4Q0XA1S0eVEGTc HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /notice?domain=sharefile.com&c=teconsent&js=nj&noticeType=bb&text=true&gtm=1&fade=30000 HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/787.670bc603.chunk.js?v=BiFKq3qpMFWIoP7RxxIQPSs0sf02kf6bFGIM-K6ERkA HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/main.b06a57ba.js?v=Pf3ELaUreSOVHwcXIs-4Q-Zg7GPSCrQ0dlGlgrIqaWs HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/636.b86a29b1.chunk.js?v=gZ4giYab1Nf806qu_gNgaRiu9yIYeEF_8fhB3SZsyvw HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALBTGCORS=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALB=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK; AWSALBCORS=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/619.103cb058.chunk.js?v=t3w-7kgESs6gtUDVhObF9osWSWG3_i_tauIE75EVs8g HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALBTGCORS=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALB=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK; AWSALBCORS=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/658.ab03e1a4.chunk.js?v=kwL_toi540AiRh-6wuk1c-WPNpO7TPxlPH2OTM1NiC4 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/726.b72a5bb0.chunk.js?v=MQwbgb4Lbb6pR0AtkP0wL-Y4sza8X6QviHy-kTXJvss HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/748.0bde3ed9.chunk.js?v=FQaynjASfZm6cky4DqwdWXbyUpmvAfV65CLsSDqZB1Q HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/757.79916e6d.chunk.js?v=kAfS3hC4IaXWeWjf4ip6vdL-u7p7h4Q0XA1S0eVEGTc HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/787.670bc603.chunk.js?v=BiFKq3qpMFWIoP7RxxIQPSs0sf02kf6bFGIM-K6ERkA HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=7kH2Uq5ssNn9/7z59HvtwXgSAT46NyocETZzxDkV4FuLfXe0zwj6gihWjKJxtmlJfvfjE9Nw9wNaD3SFYHWdKLv/PLlBTXi1Poi2HjLyvnlBK7+4YPL02T6SkPM09xMi/qL2JiiVJe9T5OXUnmWErjImzwKWGpwPssobAjBh1f4x; AWSALBTGCORS=7kH2Uq5ssNn9/7z59HvtwXgSAT46NyocETZzxDkV4FuLfXe0zwj6gihWjKJxtmlJfvfjE9Nw9wNaD3SFYHWdKLv/PLlBTXi1Poi2HjLyvnlBK7+4YPL02T6SkPM09xMi/qL2JiiVJe9T5OXUnmWErjImzwKWGpwPssobAjBh1f4x; AWSALB=mu0A/QgdIV7jSfl6HMiugUN8TcQc5K1yWXlH/81vjfdalYb6j8znhifttaDSgtn/xOWbqKhdxQUJ8rI+O6zoHDKCW5sTfcOfuAT+XGzfi4ghtTYz3IQentC06Qnv; AWSALBCORS=mu0A/QgdIV7jSfl6HMiugUN8TcQc5K1yWXlH/81vjfdalYb6j8znhifttaDSgtn/xOWbqKhdxQUJ8rI+O6zoHDKCW5sTfcOfuAT+XGzfi4ghtTYz3IQentC06Qnv
Source: global traffic	HTTP traffic detected: GET /agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/main.b06a57ba.js?v=Pf3ELaUreSOVHwcXIs-4Q-Zg7GPSCrQ0dlGlgrIqaWs HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/PublicSans-Medium.f6ebd504e3b19c186177.woff2 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/PublicSans-SemiBold.1cb825ff043ef7521574.woff2 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /asset/notice.js/v/v1.7-5097 HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/PublicSans-Regular.e86d2642f412b9493b14.woff2 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/sharefile-logo-with-icon.3aa33bb6fffd83a61c47.svg HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI
Source: global traffic	HTTP traffic detected: GET /log?domain=sharefile.com&country=us&state=&behavior=implied&session=57ba1ea8-eeed-44e2-8939-92369e59a412&userType=NEW&c=0209&referer=https://secure.sharefile.com&language=en HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /get?name=crossdomain.html&domain=sharefile.com HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALBTGCORS=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALB=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc; AWSALBCORS=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.248.1_prod&ct=1727754885994&jzb=eJzNkc1vnDAQxf8X97oCljULuzck-qU0SVuSfmxVIQNesGRsYo9JV9H-7xmTLsdcW07w3szjNzO_ngicRk72ZODAyIrURj9abioQA6rrNE7ThGZZssuSFZmEFaBNJVpsqD6_vSluq7vKRdfCUtpn2wcMYE2jnYK5RjkpV8QZieU9wGj3YWh54wwPbM8MPwrJg0YPYe6g5wpEw0BoFX7SnVBvwhKYgW-Cla5u9cCEwvjR6NGS_dOFxb--hiOZ6hzr_IRcVfclOS-Il1ZPieqIQAryxUOpZeAbN1EY7cI4iikGTtxYZEQ5DmKaBesKkVof-xJwx-qPy-jw8kF-TkW81d8Ph4Jv8-M7P8jRsIHPZndfuh86_UL1-8kU_QFNy63_yWzXfz5cy69X7DGX6ma6TWf7wXHVIFuEFzsBx41QujuvlmtKzdpXr5n9X9f0vH8pk22UBdHu8qTpP1rtelntZkPPv58BP_AI1g HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.json/74b07336-7560-45fc-7cd1-95032a784d52?id=12&jzb=eJx9js9KxDAQxt8lXpem1iJrbwt6ENQVqnsNYzK2A2lSk8lepO--U8R68zZ88_35faszZeKYHp3qlHl9eLk_mjdT6mfKbTvub7_UToG1sQReLaF4v1MleXGPzHPutM5oS8Iqj5DwkzxWNk76UHjEwGSBKQb9FAcKV7pnSHwi6MuHixNQkPbo3emP4WdgQgYHDKrbANeT_oH0EIYCA4oDg3nv1bKB_0bXblFn4Qx82H4iydYavKl1faebumml8IwpC7rITdW0--razCk6tSwX38NnDw&v=2.248.1_prod&ct=1727754885997 HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://secure.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1727754885998&v=2.248.1_prod HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://secure.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/sharefile-logo-with-icon.3aa33bb6fffd83a61c47.svg HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALBTGCORS=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALB=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc; AWSALBCORS=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc
Source: global traffic	HTTP traffic detected: GET /manifest.json HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?domain=sharefile.com&country=us&state=&behavior=implied&session=57ba1ea8-eeed-44e2-8939-92369e59a412&userType=NEW&c=0209&referer=https://secure.sharefile.com&language=en HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /asset/notice.js/v/v1.7-5097 HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALBTGCORS=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALB=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G; AWSALBCORS=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALBTGCORS=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALB=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G; AWSALBCORS=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G
Source: global traffic	HTTP traffic detected: GET /guide.-323232.1622565221517.css HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1727754885998&v=2.248.1_prod HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.248.1_prod&ct=1727754885994&jzb=eJzNkc1vnDAQxf8X97oCljULuzck-qU0SVuSfmxVIQNesGRsYo9JV9H-7xmTLsdcW07w3szjNzO_ngicRk72ZODAyIrURj9abioQA6rrNE7ThGZZssuSFZmEFaBNJVpsqD6_vSluq7vKRdfCUtpn2wcMYE2jnYK5RjkpV8QZieU9wGj3YWh54wwPbM8MPwrJg0YPYe6g5wpEw0BoFX7SnVBvwhKYgW-Cla5u9cCEwvjR6NGS_dOFxb--hiOZ6hzr_IRcVfclOS-Il1ZPieqIQAryxUOpZeAbN1EY7cI4iikGTtxYZEQ5DmKaBesKkVof-xJwx-qPy-jw8kF-TkW81d8Ph4Jv8-M7P8jRsIHPZndfuh86_UL1-8kU_QFNy63_yWzXfz5cy69X7DGX6ma6TWf7wXHVIFuEFzsBx41QujuvlmtKzdpXr5n9X9f0vH8pk22UBdHu8qTpP1rtelntZkPPv58BP_AI1g HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.json/74b07336-7560-45fc-7cd1-95032a784d52?id=12&jzb=eJx9js9KxDAQxt8lXpem1iJrbwt6ENQVqnsNYzK2A2lSk8lepO--U8R68zZ88_35faszZeKYHp3qlHl9eLk_mjdT6mfKbTvub7_UToG1sQReLaF4v1MleXGPzHPutM5oS8Iqj5DwkzxWNk76UHjEwGSBKQb9FAcKV7pnSHwi6MuHixNQkPbo3emP4WdgQgYHDKrbANeT_oH0EIYCA4oDg3nv1bKB_0bXblFn4Qx82H4iydYavKl1faebumml8IwpC7rITdW0--razCk6tSwX38NnDw&v=2.248.1_prod&ct=1727754885997 HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://secure.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=g/28dWgctkurRPD7tjj0yPvxuMxj5ayC6BRaWO72Zei+fgc+7ARglPgoJaI11rmR5Bg6otkG4ygDk36mn8ZMlUNLcA14AkW0Y1rohyDCGt+SDbeiHEH1Y7Y3/INnq5pdq6WVPb10GoauuLG5l8dM61vs/N3ssoTMRQ/SrVpHkXl4; AWSALBTGCORS=g/28dWgctkurRPD7tjj0yPvxuMxj5ayC6BRaWO72Zei+fgc+7ARglPgoJaI11rmR5Bg6otkG4ygDk36mn8ZMlUNLcA14AkW0Y1rohyDCGt+SDbeiHEH1Y7Y3/INnq5pdq6WVPb10GoauuLG5l8dM61vs/N3ssoTMRQ/SrVpHkXl4; AWSALB=fGM8c8RPQiJWWuYzAwBeey2Ngd3Dju4BNjwJ0u+iSX7QV2N+F/nKdZzo1TtsT62O0dhDEQ/qahrz8Kj6xI0+ttmqkHs093DhSsPb+7vyFco/pbIkiFDyf73pFj+p; AWSALBCORS=fGM8c8RPQiJWWuYzAwBeey2Ngd3Dju4BNjwJ0u+iSX7QV2N+F/nKdZzo1TtsT62O0dhDEQ/qahrz8Kj6xI0+ttmqkHs093DhSsPb+7vyFco/pbIkiFDyf73pFj+p
Source: global traffic	HTTP traffic detected: GET /f/a/SncqrsfZOz93buaMHHZ1EQ~~/AACuKQA~/RgRo3Qm5P4Q1AWh0dHBzOi8vY2FtcGFpZ25zdHVkaW8uc2hhcmVmaWxlLmNvbS9yL2IxZTJlYWMzYjA5ZGVkZTJjMjgzMmVlYzk_Y3Q9WVRvMU9udHpPalk2SW5OdmRYSmpaU0k3WVRveU9udHBPakE3Y3pveE5Eb2lZMkZ0Y0dGcFoyNHVaWFpsYm5RaU8yazZNVHRwT2pnd08zMXpPalU2SW1WdFlXbHNJanRwT2pJM08zTTZORG9pYzNSaGRDSTdjem95TWpvaU5qWm1ZVGcwWWpjellXWTNNakUzT1RrNE5qa3lOU0k3Y3pvME9pSnNaV0ZrSWp0ek9qYzZJalkwTlRFek1EVWlPM002TnpvaVkyaGhibTVsYkNJN1lUb3hPbnR6T2pVNkltVnRZV2xzSWp0cE9qSTNPMzE5JlcDc3BjQgpm-LmE-mYhmDDJUhdTYXJhaC5BbHRvbkBhc2h1cnN0LmNvbVgEAAAG3w~~ HTTP/1.1Host: clicks.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: clicks.sharefile.com
Source: global traffic	DNS traffic detected: DNS query: campaignstudio.sharefile.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: secure.sharefile.com
Source: global traffic	DNS traffic detected: DNS query: consent.trustarc.com
Source: global traffic	DNS traffic detected: DNS query: citrix-sharefile-content.customer.pendo.io
Source: global traffic	DNS traffic detected: DNS query: citrix-sharefile-data.customer.pendo.io

Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: http://consent.trustarc.com/noticemsg?
Source: chromecache_73.2.dr, chromecache_71.2.dr	String found in binary or memory: http://secure.sharefile.com/Authentication/Login#
Source: chromecache_67.2.dr, chromecache_76.2.dr	String found in binary or memory: https://agent.pendo.io/licenses
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://api-js-log.trustarc.com/error
Source: chromecache_67.2.dr, chromecache_76.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/agent/static/74b07336-7560-45fc-7cd1-95032a784d52
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/DGXiXepNeRvpgcvqVVwgerMyl9c/FzHL74W
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/WPvkzGkOrfIvp3qkN5N54f_1PEk/YiOA-0Y
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/freMllnYvBAwsP7Q8plLkQuQk9o/iIvmdJJ
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/jfhRXEM-T3XDOIl2P_kjewAdeGc/LhZTKWo
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/kRiIYerdgZdzqYlUiCx61iLjnBU/vJf7TMD
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/mfS2ulYoG7dN1QSakrLPIk6LA7Q/4_xFPLt
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/moENhVNGkRpdnhKRCzqkG8MUQPk/Mp9uRb2
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/njPoQ1-6YEZw5vUbZJ0_GVUQ91Y
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/qgx_AaYBkGN6StQWJLhgBhCmZsY/ZEFqtCH
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWAD
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/wotSbq5SNToNGIBxeYKbdsIn35Q
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/z6GAMp5KCypHWLnasLOIn0RVcPQ/vzuAMPt
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide.-323232.1622565221517.css
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://consent-pref.trustarc.com?type=sharefile_granular&layout=gdpr
Source: chromecache_63.2.dr	String found in binary or memory: https://consent.trustarc.com/
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://consent.trustarc.com/bannermsg?
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://consent.trustarc.com/log
Source: chromecache_67.2.dr, chromecache_76.2.dr	String found in binary or memory: https://pendo-static-5352587489443840.storage.googleapis.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@18/27@26/12

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2536 --field-trial-handle=2464,i,7416979685850918852,11471496941835541218,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://clicks.sharefile.com/f/a/SncqrsfZOz93buaMHHZ1EQ~~/AACuKQA~/RgRo3Qm5P4Q1AWh0dHBzOi8vY2FtcGFpZ25zdHVkaW8uc2hhcmVmaWxlLmNvbS9yL2IxZTJlYWMzYjA5ZGVkZTJjMjgzMmVlYzk_Y3Q9WVRvMU9udHpPalk2SW5OdmRYSmpaU0k3WVRveU9udHBPakE3Y3pveE5Eb2lZMkZ0Y0dGcFoyNHVaWFpsYm5RaU8yazZNVHRwT2pnd08zMXpPalU2SW1WdFlXbHNJanRwT2pJM08zTTZORG9pYzNSaGRDSTdjem95TWpvaU5qWm1ZVGcwWWpjellXWTNNakUzT1RrNE5qa3lOU0k3Y3pvME9pSnNaV0ZrSWp0ek9qYzZJalkwTlRFek1EVWlPM002TnpvaVkyaGhibTVsYkNJN1lUb3hPbnR6T2pVNkltVnRZV2xzSWp0cE9qSTNPMzE5JlcDc3BjQgpm-LmE-mYhmDDJUhdTYXJhaC5BbHRvbkBhc2h1cnN0LmNvbVgEAAAG3w~~"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2536 --field-trial-handle=2464,i,7416979685850918852,11471496941835541218,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
34.107.204.85	85.204.107.34.bc.googleusercontent.com	United States	15169	GOOGLEUS	false
13.225.78.53	consent.trustarc.com	United States	16509	AMAZON-02US	false
18.213.75.129	sharefile-prod.mautic.net	United States	14618	AMAZON-AESUS	false
13.225.78.26	unknown	United States	16509	AMAZON-02US	false
13.248.193.251	secure.sharefile.com	United States	16509	AMAZON-02US	false
34.111.138.51	51.138.111.34.bc.googleusercontent.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
34.208.225.223	spgo.io	United States	16509	AMAZON-02US	false
172.217.16.196	www.google.com	United States	15169	GOOGLEUS	false
172.217.18.100	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4
192.168.2.5

Contacted Domains

Name	IP	Active
bg.microsoft.map.fastly.net	199.232.210.172	true
51.138.111.34.bc.googleusercontent.com	34.111.138.51	true
spgo.io	34.208.225.223	true
secure.sharefile.com	13.248.193.251	true
www.google.com	172.217.16.196	true
sharefile-prod.mautic.net	18.213.75.129	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
consent.trustarc.com	13.225.78.53	true
85.204.107.34.bc.googleusercontent.com	34.107.204.85	true
clicks.sharefile.com	unknown	unknown
citrix-sharefile-data.customer.pendo.io	unknown	unknown
citrix-sharefile-content.customer.pendo.io	unknown	unknown
campaignstudio.sharefile.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://secure.sharefile.com/AuthUI/build/static/js/726.b72a5bb0.chunk.js?v=MQwbgb4Lbb6pR0AtkP0wL-Y4sza8X6QviHy-kTXJvss	false		unknown
https://citrix-sharefile-data.customer.pendo.io/data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.248.1_prod&ct=1727754885994&jzb=eJzNkc1vnDAQxf8X97oCljULuzck-qU0SVuSfmxVIQNesGRsYo9JV9H-7xmTLsdcW07w3szjNzO_ngicRk72ZODAyIrURj9abioQA6rrNE7ThGZZssuSFZmEFaBNJVpsqD6_vSluq7vKRdfCUtpn2wcMYE2jnYK5RjkpV8QZieU9wGj3YWh54wwPbM8MPwrJg0YPYe6g5wpEw0BoFX7SnVBvwhKYgW-Cla5u9cCEwvjR6NGS_dOFxb--hiOZ6hzr_IRcVfclOS-Il1ZPieqIQAryxUOpZeAbN1EY7cI4iikGTtxYZEQ5DmKaBesKkVof-xJwx-qPy-jw8kF-TkW81d8Ph4Jv8-M7P8jRsIHPZndfuh86_UL1-8kU_QFNy63_yWzXfz5cy69X7DGX6ma6TWf7wXHVIFuEFzsBx41QujuvlmtKzdpXr5n9X9f0vH8pk22UBdHu8qTpP1rtelntZkPPv58BP_AI1g	false		unknown
https://citrix-sharefile-content.customer.pendo.io/guide.-323232.1622565221517.css	false	0%, Virustotal, Browse	unknown
https://secure.sharefile.com/Authentication/Login?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319	false		unknown
https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	false		unknown
https://campaignstudio.sharefile.com/r/b1e2eac3b09dede2c2832eec9?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319&	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/748.0bde3ed9.chunk.js?v=FQaynjASfZm6cky4DqwdWXbyUpmvAfV65CLsSDqZB1Q	false		unknown
https://secure.sharefile.com/Authentication/StartLogin?client_id=Dzi4UPUAg5l8beKdioecdcnmHUTWWln6&state=f4uVqL4mHe4wOn7HGYp3uA--&redirect_uri=https%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin&saml_noiframe=False&subdomain=secure&autoredirect=False&requirev3=False&fix_mie_viewport=False&PromptLoginAfterActivation=False&device_id_supported=True&wcs_auth_login_url=https%3a%2f%2fauth.sharefile.io%2fconnect%2fauthorize%3fclient_id%3dDzi4UPUAg5l8beKdioecdcnmHUTWWln6%26state%3df4uVqL4mHe4wOn7HGYp3uA--%26acr_values%3dtenant%253Asecure%26response_type%3dcode%26redirect_uri%3dhttps%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin%26scope%3dsharefile%253Arestapi%253Av3%2520sharefile%253Arestapi%253Av3-internal%2520offline_access%2520openid	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/124.2e4f676c.chunk.js?v=CID9KQVn9a2YQpRL3fogqsTVNN7uC9-fVaEU1yuHjU0	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/258.141c3426.chunk.js?v=GX7-l4A8TbdDUjtkrqXFGGlNpXtyqvHSbcA-tcun8h4	false		unknown
https://secure.sharefile.com/favicon-32x32.png	false	0%, Virustotal, Browse	unknown
https://secure.sharefile.com/manifest.json	false	0%, Virustotal, Browse	unknown
https://citrix-sharefile-content.customer.pendo.io/guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ	false	0%, Virustotal, Browse	unknown
https://secure.sharefile.com/AuthUI/build/static/js/270.6be85df0.chunk.js?v=0BVoMzsUMQ521uV-L2dhESZ809Gahn-9nBV3D-3SHaQ	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/619.103cb058.chunk.js?v=t3w-7kgESs6gtUDVhObF9osWSWG3_i_tauIE75EVs8g	false		unknown
https://secure.sharefile.com/AuthUI/build/static/media/PublicSans-Medium.f6ebd504e3b19c186177.woff2	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/787.670bc603.chunk.js?v=BiFKq3qpMFWIoP7RxxIQPSs0sf02kf6bFGIM-K6ERkA	false	0%, Virustotal, Browse	unknown
https://citrix-sharefile-data.customer.pendo.io/data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1727754885998&v=2.248.1_prod	false		unknown
https://secure.sharefile.com/AuthUI/build/static/media/PublicSans-Regular.e86d2642f412b9493b14.woff2	false		unknown
https://citrix-sharefile-content.customer.pendo.io/agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js	false	0%, Virustotal, Browse	unknown
https://secure.sharefile.com/AuthUI/build/static/js/636.b86a29b1.chunk.js?v=gZ4giYab1Nf806qu_gNgaRiu9yIYeEF_8fhB3SZsyvw	false		unknown
https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com	false	0%, Virustotal, Browse	unknown
https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2o	false	0%, Virustotal, Browse	unknown
https://secure.sharefile.com/AuthUI/build/static/js/757.79916e6d.chunk.js?v=kAfS3hC4IaXWeWjf4ip6vdL-u7p7h4Q0XA1S0eVEGTc	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/516.bb5af45f.chunk.js?v=HkEAqtfibkRGDiEw4UOvO5dc97t7Doq7O21Jm-yGzro	false		unknown
https://secure.sharefile.com/AuthUI/build/static/media/PublicSans-SemiBold.1cb825ff043ef7521574.woff2	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/32.15fb0945.chunk.js?v=haT9MhgAEKklEYeYIFgF1HweAT81fD1jP9iTINJETM8	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/658.ab03e1a4.chunk.js?v=kwL_toi540AiRh-6wuk1c-WPNpO7TPxlPH2OTM1NiC4	false		unknown
https://consent.trustarc.com/asset/notice.js/v/v1.7-5097	false		unknown
https://consent.trustarc.com/notice?domain=sharefile.com&c=teconsent&js=nj&noticeType=bb&text=true&gtm=1&fade=30000	false		unknown
https://secure.sharefile.com/Authentication/Login	false		unknown
https://secure.sharefile.com/android-chrome-192x192.png	false		unknown
https://consent.trustarc.com/log?domain=sharefile.com&country=us&state=&behavior=implied&session=57ba1ea8-eeed-44e2-8939-92369e59a412&userType=NEW&c=0209&referer=https://secure.sharefile.com&language=en	false		unknown
https://secure.sharefile.com/AuthUI/build/static/js/main.b06a57ba.js?v=Pf3ELaUreSOVHwcXIs-4Q-Zg7GPSCrQ0dlGlgrIqaWs	false		unknown
https://secure.sharefile.com/login	false		unknown
https://secure.sharefile.com/AuthUI/build/static/media/sharefile-logo-with-icon.3aa33bb6fffd83a61c47.svg	false		unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 63	ASCII text, with very long lines (3545)	359ACCF11947450A6741B74B16D3B2D4	7DDF38583527B7B75F673E0F526972B6E58BA4D6	11C8548E488168DE18FD0C8DFF5FBC8D4E09C3355F67070747C905919ECF4FDA
Chrome Cache Entry: 64	ASCII text, with very long lines (2026)	25A3A254B0A9E2E782F2D9823E09B7A5	A291C6A8C8BC0CFED098776483E97B615C4C8B57	C1BA2FD7BF6C7864EFBA7C1724BA93930CBB8484B55BBBE168624D26F603956B
Chrome Cache Entry: 65	ASCII text, with very long lines (2026)	25A3A254B0A9E2E782F2D9823E09B7A5	A291C6A8C8BC0CFED098776483E97B615C4C8B57	C1BA2FD7BF6C7864EFBA7C1724BA93930CBB8484B55BBBE168624D26F603956B
Chrome Cache Entry: 66	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 67	ASCII text, with very long lines (65310)	98B596FCC9D4AC37E5FA8BABD6E9F59E	CE49DC027101D42B27A932E46FC566A371A48579	7992E8C51E8E430A3A57498C0755641E1C33DDF765216B1FCFD3DA142041FF95
Chrome Cache Entry: 68	ASCII text	79E997CA126B2522CDB04FE90DF21752	9240FE86112391FE95C34F1E49E26C7FBC2B4722	4B3A8A6F91F2F2B51FB6AB816435BD3E3B0C6622D005BA080333F49444083C85
Chrome Cache Entry: 69	Unicode text, UTF-8 text, with very long lines (13545), with no line terminators	1711B6CAC451CFDB8E7EF06DAEDB3279	C413F2ACDD0CDABE881719E8EF54F4B21969F907	386F4FDE9CA6B967C1F9968AAA58E104F05A1F66A592D2E46019954E32CAAD24
Chrome Cache Entry: 70	ASCII text, with very long lines (3545)	359ACCF11947450A6741B74B16D3B2D4	7DDF38583527B7B75F673E0F526972B6E58BA4D6	11C8548E488168DE18FD0C8DFF5FBC8D4E09C3355F67070747C905919ECF4FDA
Chrome Cache Entry: 71	JSON data	5CDB51D3E4D4E28000FDDD4A64672D4C	8DDC74D12500764BF34EB191BA2319DCD651A908	4D4FC6F210D60DF679E1B488C9E8000F134304AA13A09C045252C70D76661A94
Chrome Cache Entry: 72	HTML document, ASCII text, with very long lines (2178), with no line terminators	4D5EF1646D4ED9C5B01DFE7460C84083	A4A25442AE7A2612611B3815128CC437A5AEBAAF	4E02FDA4BDFBDF9DF0E3523B8B2B385AFBD007A3F8318E0E640F8D0A0DA100BE
Chrome Cache Entry: 73	JSON data	5CDB51D3E4D4E28000FDDD4A64672D4C	8DDC74D12500764BF34EB191BA2319DCD651A908	4D4FC6F210D60DF679E1B488C9E8000F134304AA13A09C045252C70D76661A94
Chrome Cache Entry: 74	Unicode text, UTF-8 text, with very long lines (13545), with no line terminators	1711B6CAC451CFDB8E7EF06DAEDB3279	C413F2ACDD0CDABE881719E8EF54F4B21969F907	386F4FDE9CA6B967C1F9968AAA58E104F05A1F66A592D2E46019954E32CAAD24
Chrome Cache Entry: 75	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 76	ASCII text, with very long lines (65310)	98B596FCC9D4AC37E5FA8BABD6E9F59E	CE49DC027101D42B27A932E46FC566A371A48579	7992E8C51E8E430A3A57498C0755641E1C33DDF765216B1FCFD3DA142041FF95
Chrome Cache Entry: 77	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 78	ASCII text, with no line terminators	7ACF25D0BD906E9C307DC05365E70CC7	8B6C2B1253E06C382582816FE468AEE8600D9129	78B58EE4860F86E45A2010C6CF795327F735CB22304E0AC78FA3DD00D7E96630
Chrome Cache Entry: 79	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629

Found iframes

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: Iframe src: https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: Iframe src: https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com

HTML body contains low number of good links

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain

HTTP Parser: Number of links: 1

HTML page contains hidden javascript code

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="author".. found
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="author".. found

Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="copyright".. found
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /r/b1e2eac3b09dede2c2832eec9?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319& HTTP/1.1Host: campaignstudio.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Authentication/Login?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /login HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=MJcPaFxn8M2lrgvjo3jTPR9n3KrRT2he2KBXfiQZu4H36QlOT+LP9q36xgsaT5iH+u1l7q2+ZaHt5B11qHo7v7NC9wQUPyHR2sfpecERH8Kt+os8Zq5t5iSGUdpp0+TVgEzEQ8PI3rI3xEx/ANJIQg9hOmenlD2wK123ydPYtnNg; AWSALBTGCORS=MJcPaFxn8M2lrgvjo3jTPR9n3KrRT2he2KBXfiQZu4H36QlOT+LP9q36xgsaT5iH+u1l7q2+ZaHt5B11qHo7v7NC9wQUPyHR2sfpecERH8Kt+os8Zq5t5iSGUdpp0+TVgEzEQ8PI3rI3xEx/ANJIQg9hOmenlD2wK123ydPYtnNg; AWSALB=xQxVu2aaH0NrKOEkt0IaJN0ls+wTWNm6w+BWF+77pGdOCMb47AShRuSIQO9JwWxoioqgwbNYOsOu1HEOIdgylUxq45vR1gN72r9RuqZN7nxXEofH0o/9e1tn6KIm; AWSALBCORS=xQxVu2aaH0NrKOEkt0IaJN0ls+wTWNm6w+BWF+77pGdOCMb47AShRuSIQO9JwWxoioqgwbNYOsOu1HEOIdgylUxq45vR1gN72r9RuqZN7nxXEofH0o/9e1tn6KIm
Source: global traffic	HTTP traffic detected: GET /Authentication/StartLogin?client_id=Dzi4UPUAg5l8beKdioecdcnmHUTWWln6&state=f4uVqL4mHe4wOn7HGYp3uA--&redirect_uri=https%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin&saml_noiframe=False&subdomain=secure&autoredirect=False&requirev3=False&fix_mie_viewport=False&PromptLoginAfterActivation=False&device_id_supported=True&wcs_auth_login_url=https%3a%2f%2fauth.sharefile.io%2fconnect%2fauthorize%3fclient_id%3dDzi4UPUAg5l8beKdioecdcnmHUTWWln6%26state%3df4uVqL4mHe4wOn7HGYp3uA--%26acr_values%3dtenant%253Asecure%26response_type%3dcode%26redirect_uri%3dhttps%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin%26scope%3dsharefile%253Arestapi%253Av3%2520sharefile%253Arestapi%253Av3-internal%2520offline_access%2520openid HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=OghBqkRMdeCerenm4ijvxcWPBmK7nxBUebAl2bgCnB+SZugwYfwNrB/nLhfUt9FcYxN26XrYkEkddWO/35/QQ9YVALIVZTna6J8XVe96EyNeSQrer4YyalP/O+yCYQSvrosGO8HgDHr+MH+K5ghcGIAdA4bQp1xhBUH+EPiTaXhl; AWSALBTGCORS=OghBqkRMdeCerenm4ijvxcWPBmK7nxBUebAl2bgCnB+SZugwYfwNrB/nLhfUt9FcYxN26XrYkEkddWO/35/QQ9YVALIVZTna6J8XVe96EyNeSQrer4YyalP/O+yCYQSvrosGO8HgDHr+MH+K5ghcGIAdA4bQp1xhBUH+EPiTaXhl; AWSALB=e8wExK9+NBJy5fo+BCNPL8V6kNwH1m7/Va6g382K6OLnTczRwMprE/SeLbVnjOtl7ecLgQr1gmUIncJyj5pbs4KG8TcSUn+R9tzX/3Z7EwmT6YXkhza3qqQ+IkxU; AWSALBCORS=e8wExK9+NBJy5fo+BCNPL8V6kNwH1m7/Va6g382K6OLnTczRwMprE/SeLbVnjOtl7ecLgQr1gmUIncJyj5pbs4KG8TcSUn+R9tzX/3Z7EwmT6YXkhza3qqQ+IkxU; SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca
Source: global traffic	HTTP traffic detected: GET /Authentication/Login HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=CLKuR0R1cPjbBsP57I4sGf2rBPKf7t51rZ1MS3Xiz63TtIw6X1rZ1Wp8wwiodGO+Wa9fWiWY6yLovot/ixC8JbXkg/fmW/yw8DJk9EniPsu9S+OkPapPfMmXjfqmKUiAtZeGSWlr+e83N/JnmxFNNQ8HkFxGRkBMOn8wxL4itA4F; AWSALBTGCORS=CLKuR0R1cPjbBsP57I4sGf2rBPKf7t51rZ1MS3Xiz63TtIw6X1rZ1Wp8wwiodGO+Wa9fWiWY6yLovot/ixC8JbXkg/fmW/yw8DJk9EniPsu9S+OkPapPfMmXjfqmKUiAtZeGSWlr+e83N/JnmxFNNQ8HkFxGRkBMOn8wxL4itA4F; AWSALB=LGbLBiunbVANG3Dzsz7wUUzKDVYZ3WBFx4F+EwrPsMpwR71g2YKbQyCQjE2qDy1gm3pOCI4ScNFkVC4mYI8XbvKF4Ibj7T5ZSZX8y/YLG90wQy3RcH6c6DKWaGza; AWSALBCORS=LGbLBiunbVANG3Dzsz7wUUzKDVYZ3WBFx4F+EwrPsMpwR71g2YKbQyCQjE2qDy1gm3pOCI4ScNFkVC4mYI8XbvKF4Ibj7T5ZSZX8y/YLG90wQy3RcH6c6DKWaGza; clientRequest=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%3D%3D
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2o HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/124.2e4f676c.chunk.js?v=CID9KQVn9a2YQpRL3fogqsTVNN7uC9-fVaEU1yuHjU0 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/258.141c3426.chunk.js?v=GX7-l4A8TbdDUjtkrqXFGGlNpXtyqvHSbcA-tcun8h4 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/270.6be85df0.chunk.js?v=0BVoMzsUMQ521uV-L2dhESZ809Gahn-9nBV3D-3SHaQ HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/32.15fb0945.chunk.js?v=haT9MhgAEKklEYeYIFgF1HweAT81fD1jP9iTINJETM8 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/516.bb5af45f.chunk.js?v=HkEAqtfibkRGDiEw4UOvO5dc97t7Doq7O21Jm-yGzro HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /notice?domain=sharefile.com&c=teconsent&js=nj&noticeType=bb&text=true&gtm=1&fade=30000 HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/619.103cb058.chunk.js?v=t3w-7kgESs6gtUDVhObF9osWSWG3_i_tauIE75EVs8g HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/636.b86a29b1.chunk.js?v=gZ4giYab1Nf806qu_gNgaRiu9yIYeEF_8fhB3SZsyvw HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/658.ab03e1a4.chunk.js?v=kwL_toi540AiRh-6wuk1c-WPNpO7TPxlPH2OTM1NiC4 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/516.bb5af45f.chunk.js?v=HkEAqtfibkRGDiEw4UOvO5dc97t7Doq7O21Jm-yGzro HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=lHZA0XJ2nT38sOqV5LeN3OgP/0lLR2nsqqWfXTkTJF+znod68VcLlplGe7Ar477hHQUYem/nlvBFLgHrL4IJn0OeblXOKVCAn5TLRtZKEgX/Jw+nigkVOcUcdx/wYMqsWSl3CQ433pR7D9VUNepx7oTLBrjS6PK2F0Nd9PQH+Igr; AWSALBTGCORS=lHZA0XJ2nT38sOqV5LeN3OgP/0lLR2nsqqWfXTkTJF+znod68VcLlplGe7Ar477hHQUYem/nlvBFLgHrL4IJn0OeblXOKVCAn5TLRtZKEgX/Jw+nigkVOcUcdx/wYMqsWSl3CQ433pR7D9VUNepx7oTLBrjS6PK2F0Nd9PQH+Igr; AWSALB=ZkxciByYDTiERVRahfL4BJ3BC4TLAqitIG/F7Dgx9pguyim0mXBUU1oy1Z8vw/IRUCdLcGjwkj+DVt6LizRsdbkPiDmkebCtKcul5VajwATE9aC/oyjk1YWIO+av; AWSALBCORS=ZkxciByYDTiERVRahfL4BJ3BC4TLAqitIG/F7Dgx9pguyim0mXBUU1oy1Z8vw/IRUCdLcGjwkj+DVt6LizRsdbkPiDmkebCtKcul5VajwATE9aC/oyjk1YWIO+av
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/124.2e4f676c.chunk.js?v=CID9KQVn9a2YQpRL3fogqsTVNN7uC9-fVaEU1yuHjU0 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/726.b72a5bb0.chunk.js?v=MQwbgb4Lbb6pR0AtkP0wL-Y4sza8X6QviHy-kTXJvss HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/270.6be85df0.chunk.js?v=0BVoMzsUMQ521uV-L2dhESZ809Gahn-9nBV3D-3SHaQ HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/32.15fb0945.chunk.js?v=haT9MhgAEKklEYeYIFgF1HweAT81fD1jP9iTINJETM8 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/258.141c3426.chunk.js?v=GX7-l4A8TbdDUjtkrqXFGGlNpXtyqvHSbcA-tcun8h4 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALBTGCORS=Ft6kgShMvnrpDdHk0F0n+6WYy76OVfw7NYPnPizh41Z6UCfSuIUAGsKFbKbfEAOVanTZ8ZtVXEwfRwINBVy0a1xGN4ria7Ysp6SpbMqeW5UFtBRzNofuuhTGcy8K/hUrghUtVgbt4KXb0OkHFuo15T69AKYyCIA//31ScxWtAdov; AWSALB=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY; AWSALBCORS=Ofr6jptOZNIxwoF51RFwwWvHJfkPXhOtBu7MwULRHa9GYOY9HeqdGZG8j7MIDjkfoWpz1tfni0I3gSEYHJTrGhqU4bTq5Gwa+/ViN5y2QpDmrOdYQTuFd5dM7PSY
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/748.0bde3ed9.chunk.js?v=FQaynjASfZm6cky4DqwdWXbyUpmvAfV65CLsSDqZB1Q HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/757.79916e6d.chunk.js?v=kAfS3hC4IaXWeWjf4ip6vdL-u7p7h4Q0XA1S0eVEGTc HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /notice?domain=sharefile.com&c=teconsent&js=nj&noticeType=bb&text=true&gtm=1&fade=30000 HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/787.670bc603.chunk.js?v=BiFKq3qpMFWIoP7RxxIQPSs0sf02kf6bFGIM-K6ERkA HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/main.b06a57ba.js?v=Pf3ELaUreSOVHwcXIs-4Q-Zg7GPSCrQ0dlGlgrIqaWs HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALBTGCORS=cugolChWVSD8hTazbhwiyomAAGE1D9LSjkEay/CIVyZSc2fXjfEFL21FbaU++6wusTXXeJWLYhqolJR/j/v0z0reEwnLyL73nZ5CMXClFzNiv/2HaQJ0Otz90BqW6AxRrz9xIpTVjrGsSwtF9eGRNu8i5Xrgp617SsKlqRUapito; AWSALB=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN; AWSALBCORS=Q1PPhY/VryUQLkdcRaqxi0ijr2XltHJC1eR3oSzYqCvfCAbWJphMHxEDkx5uyzZ03rDiUwauAfgTyTmk6xAcahWOYXc6hmOpx+fEeVTcycJVrXwW3B3JvXOEdzcN
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/636.b86a29b1.chunk.js?v=gZ4giYab1Nf806qu_gNgaRiu9yIYeEF_8fhB3SZsyvw HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALBTGCORS=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALB=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK; AWSALBCORS=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/619.103cb058.chunk.js?v=t3w-7kgESs6gtUDVhObF9osWSWG3_i_tauIE75EVs8g HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALBTGCORS=U0jB3kDIKzNgu+2XLUpGOZFLUKvpJ100WzFUJtUgRgoCpX2O6CMyU+OtqQXkIL7avlZV8jP/RIubDQX2RO4kmOC1fks7XG5HYwtbbGUh591Un/HYFQJNOk9+Clxfxy0c8IjPPRaLcc/+Jy+SgFyeXV2EcB2WmGFw8pDdEVSef+Uw; AWSALB=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK; AWSALBCORS=rNiDkO9nAan5ULvM7wf5jSd4/k1O+99DHQT8BC5Sn2LQcOMHb7atklYrZ2a6Qxh17jd3DcUZIuHQtymBpZYfhblcS0tto/gCFf826ecGQJYwC/G7+erVQG/KtIwK
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/658.ab03e1a4.chunk.js?v=kwL_toi540AiRh-6wuk1c-WPNpO7TPxlPH2OTM1NiC4 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/726.b72a5bb0.chunk.js?v=MQwbgb4Lbb6pR0AtkP0wL-Y4sza8X6QviHy-kTXJvss HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/748.0bde3ed9.chunk.js?v=FQaynjASfZm6cky4DqwdWXbyUpmvAfV65CLsSDqZB1Q HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/757.79916e6d.chunk.js?v=kAfS3hC4IaXWeWjf4ip6vdL-u7p7h4Q0XA1S0eVEGTc HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALBTGCORS=9z638SL2z7p93FJICukf83qL830jQy4B6uHBM9asBQ4Vbj9GwiHMl2GaYsIpAweNVOax1XBtf7LDvV9/2FTfQZO7WANKrB4gjOw8q1sbyOmx9y/tYu/P/3Otdc+yMmFiH88bKpPtMJCQllTE5UbxlihY1+sk+zZHX1dS8KbWxLaA; AWSALB=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900; AWSALBCORS=lV5Oa0y6pBxNx78UMfYIvr9Ft6/3sfNqETGdzJuswCiGn8d1ohP/I7vZjJ555ZDHHs/IJk555gA2a/PNdoSMrSB3zSSyt5FlGF00ITYt/xk7rWJtPmGRTtYdx900
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/787.670bc603.chunk.js?v=BiFKq3qpMFWIoP7RxxIQPSs0sf02kf6bFGIM-K6ERkA HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=7kH2Uq5ssNn9/7z59HvtwXgSAT46NyocETZzxDkV4FuLfXe0zwj6gihWjKJxtmlJfvfjE9Nw9wNaD3SFYHWdKLv/PLlBTXi1Poi2HjLyvnlBK7+4YPL02T6SkPM09xMi/qL2JiiVJe9T5OXUnmWErjImzwKWGpwPssobAjBh1f4x; AWSALBTGCORS=7kH2Uq5ssNn9/7z59HvtwXgSAT46NyocETZzxDkV4FuLfXe0zwj6gihWjKJxtmlJfvfjE9Nw9wNaD3SFYHWdKLv/PLlBTXi1Poi2HjLyvnlBK7+4YPL02T6SkPM09xMi/qL2JiiVJe9T5OXUnmWErjImzwKWGpwPssobAjBh1f4x; AWSALB=mu0A/QgdIV7jSfl6HMiugUN8TcQc5K1yWXlH/81vjfdalYb6j8znhifttaDSgtn/xOWbqKhdxQUJ8rI+O6zoHDKCW5sTfcOfuAT+XGzfi4ghtTYz3IQentC06Qnv; AWSALBCORS=mu0A/QgdIV7jSfl6HMiugUN8TcQc5K1yWXlH/81vjfdalYb6j8znhifttaDSgtn/xOWbqKhdxQUJ8rI+O6zoHDKCW5sTfcOfuAT+XGzfi4ghtTYz3IQentC06Qnv
Source: global traffic	HTTP traffic detected: GET /agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/js/main.b06a57ba.js?v=Pf3ELaUreSOVHwcXIs-4Q-Zg7GPSCrQ0dlGlgrIqaWs HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/PublicSans-Medium.f6ebd504e3b19c186177.woff2 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/PublicSans-SemiBold.1cb825ff043ef7521574.woff2 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /asset/notice.js/v/v1.7-5097 HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/PublicSans-Regular.e86d2642f412b9493b14.woff2 HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://secure.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/sharefile-logo-with-icon.3aa33bb6fffd83a61c47.svg HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://secure.sharefile.com/AuthUI/build/static/css/main.2803c8fc.css?v=IKRRL9DKIoD5-vhbFOUvewEfMisRbemzVbys8_M9K2oAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALBTGCORS=4sgDMVNTyrBwCtlLtJq8RxuVO9YW6UBOc8U2sZpQOfHEAyWUUejHHUmvXjllHLB9/1+kNjDp2T/UGNOlnRy6odZpMUanGkP0rgACFpeVnqV6jfklmUiHE6yvMZFXDKVqM+kTUQmQ1d4lAUmT4QSBACH87zAPQygXZPb3dhsijETA; AWSALB=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI; AWSALBCORS=kZYMuo5RdgTzWV9Au2D53i5/DkM0DNLuvW6hXdDpC8zb4GVcOJnrMvMYw6qzyHpEiOoychQJzWK4LrzNx/YTcjl1Q/KDGpKHzglKfjG96d0u4LRUIE9AW+r0R1NI
Source: global traffic	HTTP traffic detected: GET /log?domain=sharefile.com&country=us&state=&behavior=implied&session=57ba1ea8-eeed-44e2-8939-92369e59a412&userType=NEW&c=0209&referer=https://secure.sharefile.com&language=en HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /get?name=crossdomain.html&domain=sharefile.com HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALBTGCORS=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALB=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc; AWSALBCORS=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.248.1_prod&ct=1727754885994&jzb=eJzNkc1vnDAQxf8X97oCljULuzck-qU0SVuSfmxVIQNesGRsYo9JV9H-7xmTLsdcW07w3szjNzO_ngicRk72ZODAyIrURj9abioQA6rrNE7ThGZZssuSFZmEFaBNJVpsqD6_vSluq7vKRdfCUtpn2wcMYE2jnYK5RjkpV8QZieU9wGj3YWh54wwPbM8MPwrJg0YPYe6g5wpEw0BoFX7SnVBvwhKYgW-Cla5u9cCEwvjR6NGS_dOFxb--hiOZ6hzr_IRcVfclOS-Il1ZPieqIQAryxUOpZeAbN1EY7cI4iikGTtxYZEQ5DmKaBesKkVof-xJwx-qPy-jw8kF-TkW81d8Ph4Jv8-M7P8jRsIHPZndfuh86_UL1-8kU_QFNy63_yWzXfz5cy69X7DGX6ma6TWf7wXHVIFuEFzsBx41QujuvlmtKzdpXr5n9X9f0vH8pk22UBdHu8qTpP1rtelntZkPPv58BP_AI1g HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.json/74b07336-7560-45fc-7cd1-95032a784d52?id=12&jzb=eJx9js9KxDAQxt8lXpem1iJrbwt6ENQVqnsNYzK2A2lSk8lepO--U8R68zZ88_35faszZeKYHp3qlHl9eLk_mjdT6mfKbTvub7_UToG1sQReLaF4v1MleXGPzHPutM5oS8Iqj5DwkzxWNk76UHjEwGSBKQb9FAcKV7pnSHwi6MuHixNQkPbo3emP4WdgQgYHDKrbANeT_oH0EIYCA4oDg3nv1bKB_0bXblFn4Qx82H4iydYavKl1faebumml8IwpC7rITdW0--razCk6tSwX38NnDw&v=2.248.1_prod&ct=1727754885997 HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://secure.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1727754885998&v=2.248.1_prod HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://secure.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AuthUI/build/static/media/sharefile-logo-with-icon.3aa33bb6fffd83a61c47.svg HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALBTGCORS=WtMO99zwEiicouwZesPvfspMnCihBCO+08tlVyZy0SnTYZ73qXo3TReMNoJTQ96IZs2A8CxsUaN5WmeqPvs06n08xAVd4qjTbMa0WEmft6wNiOchhoB8fU/atqtazrTYwMV0aq1M9B7QJUKEBP72nT0A15iAsQPy1lgxUVjMrONC; AWSALB=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc; AWSALBCORS=YXqfXo7/uTqaNmDWtdLvBBa8OUe65KL2aMlEQ8GQiA0qGgF729W3rq3xZiitLeRM8nMyueyoPiD7CsXiCEs2e8DOLC8JB06qm2MMsBzdUb+/9ybBJSrnb5JGl5gc
Source: global traffic	HTTP traffic detected: GET /manifest.json HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?domain=sharefile.com&country=us&state=&behavior=implied&session=57ba1ea8-eeed-44e2-8939-92369e59a412&userType=NEW&c=0209&referer=https://secure.sharefile.com&language=en HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /asset/notice.js/v/v1.7-5097 HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: secure.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://secure.sharefile.com/Authentication/LoginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALBTGCORS=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALB=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G; AWSALBCORS=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALBTGCORS=fCWIQ9Rpi8dMdf4ZmWv4NTGS8L8fWVTl2btkXGO2xFL7Y2oI36fvIvn2hWTekdfYqibrgOHAcEcoJGapiU4P5zRnRL6lbkKctJI15Elhb6ZHNp2ECjQXCaEPIHcMgbqyXG41cAAAkallrfDtIC6/qkB601n5N1sRL00Speduhzxo; AWSALB=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G; AWSALBCORS=6HbXvPO9WiE+PpcmTD4/mp9ky0aacVxOhhWtKJffwjObYYfohJtNZgSNnWrtVVPy49JTPsQK0X6iouUo0M+NVFjygjn5J/PihLWtUiOJCyQBe6j/PRI0C+mAMl6G
Source: global traffic	HTTP traffic detected: GET /guide.-323232.1622565221517.css HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1727754885998&v=2.248.1_prod HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.248.1_prod&ct=1727754885994&jzb=eJzNkc1vnDAQxf8X97oCljULuzck-qU0SVuSfmxVIQNesGRsYo9JV9H-7xmTLsdcW07w3szjNzO_ngicRk72ZODAyIrURj9abioQA6rrNE7ThGZZssuSFZmEFaBNJVpsqD6_vSluq7vKRdfCUtpn2wcMYE2jnYK5RjkpV8QZieU9wGj3YWh54wwPbM8MPwrJg0YPYe6g5wpEw0BoFX7SnVBvwhKYgW-Cla5u9cCEwvjR6NGS_dOFxb--hiOZ6hzr_IRcVfclOS-Il1ZPieqIQAryxUOpZeAbN1EY7cI4iikGTtxYZEQ5DmKaBesKkVof-xJwx-qPy-jw8kF-TkW81d8Ph4Jv8-M7P8jRsIHPZndfuh86_UL1-8kU_QFNy63_yWzXfz5cy69X7DGX6ma6TWf7wXHVIFuEFzsBx41QujuvlmtKzdpXr5n9X9f0vH8pk22UBdHu8qTpP1rtelntZkPPv58BP_AI1g HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.json/74b07336-7560-45fc-7cd1-95032a784d52?id=12&jzb=eJx9js9KxDAQxt8lXpem1iJrbwt6ENQVqnsNYzK2A2lSk8lepO--U8R68zZ88_35faszZeKYHp3qlHl9eLk_mjdT6mfKbTvub7_UToG1sQReLaF4v1MleXGPzHPutM5oS8Iqj5DwkzxWNk76UHjEwGSBKQb9FAcKV7pnSHwi6MuHixNQkPbo3emP4WdgQgYHDKrbANeT_oH0EIYCA4oDg3nv1bKB_0bXblFn4Qx82H4iydYavKl1faebumml8IwpC7rITdW0--razCk6tSwX38NnDw&v=2.248.1_prod&ct=1727754885997 HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://secure.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; TAsessionID=57ba1ea8-eeed-44e2-8939-92369e59a412\|NEW; notice_behavior=implied,us; AWSALBTG=g/28dWgctkurRPD7tjj0yPvxuMxj5ayC6BRaWO72Zei+fgc+7ARglPgoJaI11rmR5Bg6otkG4ygDk36mn8ZMlUNLcA14AkW0Y1rohyDCGt+SDbeiHEH1Y7Y3/INnq5pdq6WVPb10GoauuLG5l8dM61vs/N3ssoTMRQ/SrVpHkXl4; AWSALBTGCORS=g/28dWgctkurRPD7tjj0yPvxuMxj5ayC6BRaWO72Zei+fgc+7ARglPgoJaI11rmR5Bg6otkG4ygDk36mn8ZMlUNLcA14AkW0Y1rohyDCGt+SDbeiHEH1Y7Y3/INnq5pdq6WVPb10GoauuLG5l8dM61vs/N3ssoTMRQ/SrVpHkXl4; AWSALB=fGM8c8RPQiJWWuYzAwBeey2Ngd3Dju4BNjwJ0u+iSX7QV2N+F/nKdZzo1TtsT62O0dhDEQ/qahrz8Kj6xI0+ttmqkHs093DhSsPb+7vyFco/pbIkiFDyf73pFj+p; AWSALBCORS=fGM8c8RPQiJWWuYzAwBeey2Ngd3Dju4BNjwJ0u+iSX7QV2N+F/nKdZzo1TtsT62O0dhDEQ/qahrz8Kj6xI0+ttmqkHs093DhSsPb+7vyFco/pbIkiFDyf73pFj+p
Source: global traffic	HTTP traffic detected: GET /f/a/SncqrsfZOz93buaMHHZ1EQ~~/AACuKQA~/RgRo3Qm5P4Q1AWh0dHBzOi8vY2FtcGFpZ25zdHVkaW8uc2hhcmVmaWxlLmNvbS9yL2IxZTJlYWMzYjA5ZGVkZTJjMjgzMmVlYzk_Y3Q9WVRvMU9udHpPalk2SW5OdmRYSmpaU0k3WVRveU9udHBPakE3Y3pveE5Eb2lZMkZ0Y0dGcFoyNHVaWFpsYm5RaU8yazZNVHRwT2pnd08zMXpPalU2SW1WdFlXbHNJanRwT2pJM08zTTZORG9pYzNSaGRDSTdjem95TWpvaU5qWm1ZVGcwWWpjellXWTNNakUzT1RrNE5qa3lOU0k3Y3pvME9pSnNaV0ZrSWp0ek9qYzZJalkwTlRFek1EVWlPM002TnpvaVkyaGhibTVsYkNJN1lUb3hPbnR6T2pVNkltVnRZV2xzSWp0cE9qSTNPMzE5JlcDc3BjQgpm-LmE-mYhmDDJUhdTYXJhaC5BbHRvbkBhc2h1cnN0LmNvbVgEAAAG3w~~ HTTP/1.1Host: clicks.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: clicks.sharefile.com
Source: global traffic	DNS traffic detected: DNS query: campaignstudio.sharefile.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: secure.sharefile.com
Source: global traffic	DNS traffic detected: DNS query: consent.trustarc.com
Source: global traffic	DNS traffic detected: DNS query: citrix-sharefile-content.customer.pendo.io
Source: global traffic	DNS traffic detected: DNS query: citrix-sharefile-data.customer.pendo.io

Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: http://consent.trustarc.com/noticemsg?
Source: chromecache_73.2.dr, chromecache_71.2.dr	String found in binary or memory: http://secure.sharefile.com/Authentication/Login#
Source: chromecache_67.2.dr, chromecache_76.2.dr	String found in binary or memory: https://agent.pendo.io/licenses
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://api-js-log.trustarc.com/error
Source: chromecache_67.2.dr, chromecache_76.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/agent/static/74b07336-7560-45fc-7cd1-95032a784d52
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/DGXiXepNeRvpgcvqVVwgerMyl9c/FzHL74W
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/WPvkzGkOrfIvp3qkN5N54f_1PEk/YiOA-0Y
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/freMllnYvBAwsP7Q8plLkQuQk9o/iIvmdJJ
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/jfhRXEM-T3XDOIl2P_kjewAdeGc/LhZTKWo
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/kRiIYerdgZdzqYlUiCx61iLjnBU/vJf7TMD
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/mfS2ulYoG7dN1QSakrLPIk6LA7Q/4_xFPLt
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/moENhVNGkRpdnhKRCzqkG8MUQPk/Mp9uRb2
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/njPoQ1-6YEZw5vUbZJ0_GVUQ91Y
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/qgx_AaYBkGN6StQWJLhgBhCmZsY/ZEFqtCH
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWAD
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/wotSbq5SNToNGIBxeYKbdsIn35Q
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/z6GAMp5KCypHWLnasLOIn0RVcPQ/vzuAMPt
Source: chromecache_71.2.dr	String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide.-323232.1622565221517.css
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://consent-pref.trustarc.com?type=sharefile_granular&layout=gdpr
Source: chromecache_63.2.dr	String found in binary or memory: https://consent.trustarc.com/
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://consent.trustarc.com/bannermsg?
Source: chromecache_70.2.dr, chromecache_63.2.dr	String found in binary or memory: https://consent.trustarc.com/log
Source: chromecache_67.2.dr, chromecache_76.2.dr	String found in binary or memory: https://pendo-static-5352587489443840.storage.googleapis.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@18/27@26/12

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2536 --field-trial-handle=2464,i,7416979685850918852,11471496941835541218,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://clicks.sharefile.com/f/a/SncqrsfZOz93buaMHHZ1EQ~~/AACuKQA~/RgRo3Qm5P4Q1AWh0dHBzOi8vY2FtcGFpZ25zdHVkaW8uc2hhcmVmaWxlLmNvbS9yL2IxZTJlYWMzYjA5ZGVkZTJjMjgzMmVlYzk_Y3Q9WVRvMU9udHpPalk2SW5OdmRYSmpaU0k3WVRveU9udHBPakE3Y3pveE5Eb2lZMkZ0Y0dGcFoyNHVaWFpsYm5RaU8yazZNVHRwT2pnd08zMXpPalU2SW1WdFlXbHNJanRwT2pJM08zTTZORG9pYzNSaGRDSTdjem95TWpvaU5qWm1ZVGcwWWpjellXWTNNakUzT1RrNE5qa3lOU0k3Y3pvME9pSnNaV0ZrSWp0ek9qYzZJalkwTlRFek1EVWlPM002TnpvaVkyaGhibTVsYkNJN1lUb3hPbnR6T2pVNkltVnRZV2xzSWp0cE9qSTNPMzE5JlcDc3BjQgpm-LmE-mYhmDDJUhdTYXJhaC5BbHRvbkBhc2h1cnN0LmNvbVgEAAAG3w~~"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2536 --field-trial-handle=2464,i,7416979685850918852,11471496941835541218,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1523116
Product:	CloudBasic
Start time:	05:53:38
Start date:	01.10.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs