Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://rb.gy/vnpcib#Ce6S6ujW1BYFZobd?cbdQXrZMccbJNGcczVBcdcjhczcfRCMmh3mcbbbcd

Overview

General Information

Sample URL:https://rb.gy/vnpcib#Ce6S6ujW1BYFZobd?cbdQXrZMccbJNGcczVBcdcjhczcfRCMmh3mcbbbcd
Analysis ID:1602380
Infos:

Detection

Score:48
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

AI detected suspicious Javascript
Javascript uses Clearbit API to dynamically determine company logos
Detected non-DNS traffic on DNS port
HTML body contains low number of good links
HTML page contains hidden javascript code
Stores files to the Windows start menu directory

Classification

Process Tree

  • System is w10x64_ra
  • chrome.exe (PID: 7040 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 6248 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2104 --field-trial-handle=1908,i,10353729756610847623,6904398638014860638,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 6364 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6416 --field-trial-handle=1908,i,10353729756610847623,6904398638014860638,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 5968 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://rb.gy/vnpcib#Ce6S6ujW1BYFZobd?cbdQXrZMccbJNGcczVBcdcjhczcfRCMmh3mcbbbcd" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Suricata Signatures

No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

barindex
AI detected suspicious Javascript
Source: 0.3.id.script.csvJoe Sandbox AI: Detected suspicious JavaScript with source url: https://www.advancednetworkprivacyimmediate.top/1i... This script exhibits several high-risk behaviors, including dynamic code execution and data exfiltration. The use of obfuscated URLs and the redirection to untrusted domains further increases the risk. While the script may have a legitimate purpose, the overall behavior is highly suspicious and indicative of potential malicious activity.
Source: 0.2.id.script.csvJoe Sandbox AI: Detected suspicious JavaScript with source url: https://www.advancednetworkprivacyimmediate.top/c?... This script exhibits several high-risk behaviors, including dynamic code execution, data exfiltration, and suspicious redirection. The script uses `window.location.replace()` to redirect the user to a potentially malicious domain, and it also collects user data and sends it to an external server. Additionally, the script attempts to obfuscate its behavior by using encoded strings and dynamic variable names. These factors indicate a high likelihood of malicious intent, warranting a high-risk score.
Javascript uses Clearbit API to dynamically determine company logos
Source: https://virtualshield.com/_next/static/chunks/489-6ef6dd658cd9c4c3a4c8.jsHTTP Parser: (self.webpackchunk_n_e=self.webpackchunk_n_e||[]).push([[489],{75039:function(e,s,t){"use strict";var r=t(85893),i=t(67294),a=t(48975),l=t(88846),n=[{title:"breach details:",description:"you have not unlocked the full results of this scan. to view full scan results, please subscribe to virtualshield. lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat."},{title:"to protect yourself:",description:"you have not unlocked the full results of this scan. to view full scan results, please subscribe to virtualshield. lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu iat nulla pariatu...
Source: https://virtualshield.com/_next/static/chunks/4148-77d9619320dfa82b5eb5.jsHTTP Parser: (self.webpackchunk_n_e=self.webpackchunk_n_e||[]).push([[4148],{77043:function(e,s,a){"use strict";var r=a(26265),t=a(85893),i=(a(67294),a(36591),a(6694),a(46066));function n(e,s){var a=object.keys(e);if(object.getownpropertysymbols){var r=object.getownpropertysymbols(e);s&&(r=r.filter((function(s){return object.getownpropertydescriptor(e,s).enumerable}))),a.push.apply(a,r)}return a}function l(e){for(var s=1;s<arguments.length;s++){var a=null!=arguments[s]?arguments[s]:{};s%2?n(object(a),!0).foreach((function(s){(0,r.z)(e,s,a[s])})):object.getownpropertydescriptors?object.defineproperties(e,object.getownpropertydescriptors(a)):n(object(a)).foreach((function(s){object.defineproperty(e,s,object.getownpropertydescriptor(a,s))}))}return e}var o=[{id:1,title:"hide your ip",description:"your ip address is essentially your online address. it can show your city, state, and country. this means that it can easily be traced back to you if it is left exposed online. many sites log the ip addresses of their website visito...
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Number of links: 0
Source: https://virtualshield.com/deals/mobile-antivirus-semi-annual-nt?aff=b72a653c6984a63af0b3&coupon=AFFF0B3_AV86&checkoutPath=checkout-v2&mbgDays=30&offer=AV86-6&cid=9e7ebb70-52f9-451a-b8f6-70957adf9754&pubid=29836HTTP Parser: Base64 decoded: <svg width="16" height="16" xmlns="http://www.w3.org/2000/svg" version="1.1"/>
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://js.chargebee.com/assets/cbjs-2025.01.27-08.25/v2/master.html#my.virtualshield.com
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://wchat.freshchat.com/widget/config_iframe.html?host=https://wchat.freshchat.com&token=72f29ccf-6c4f-4be6-8a9c-c47d10b0d326&origin=https://my.virtualshield.com
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://js.chargebee.com/assets/cbjs-2025.01.27-08.25/v2/master.html#my.virtualshield.com
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://js.chargebee.com/assets/cbjs-2025.01.27-08.25/v2/master.html#my.virtualshield.com
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://js.chargebee.com/assets/cbjs-2025.01.27-08.25/v2/component.html#my.virtualshield.com
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://js.chargebee.com/assets/cbjs-2025.01.27-08.25/v2/component.html#my.virtualshield.com
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: Iframe src: https://js.chargebee.com/assets/cbjs-2025.01.27-08.25/v2/component.html#my.virtualshield.com
Source: https://www.advancednetworkprivacyimmediate.top/1iipmmkdt/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTczODE3NzAwMTQ1OA%3D%3D&lang=en&lid=20a5b3fd-685e-488b-b430-74bd9c6c5f91&ltd=dHJrLnNuYWtlLWJhc2lzLXN0dWNrLXJpdmVyLnJ1bg&pd2q=YTE9MjBhNWIzZmQtNjg1ZS00ODhiLWI0MzAtNzRiZDljNmM1ZjkxJmEyPWRkODk3YjI1LWU5MGYtNGZkYS04NWZjLTFjZmExYmYwYjk3NiZhMz04Mw&r_lang=en&r_okeyword=vs2&r_os=windows&td=dHJrLmh1cnQtc2VudC1mZWx0LXJ1YmJlZC5ydW4vc253ZGFydGY&lvc=a9a07052HTTP Parser: No favicon
Source: https://www.advancednetworkprivacyimmediate.top/1iipmmkdt/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTczODE3NzAwMTQ1OA%3D%3D&lang=en&lid=20a5b3fd-685e-488b-b430-74bd9c6c5f91&ltd=dHJrLnNuYWtlLWJhc2lzLXN0dWNrLXJpdmVyLnJ1bg&pd2q=YTE9MjBhNWIzZmQtNjg1ZS00ODhiLWI0MzAtNzRiZDljNmM1ZjkxJmEyPWRkODk3YjI1LWU5MGYtNGZkYS04NWZjLTFjZmExYmYwYjk3NiZhMz04Mw&r_lang=en&r_okeyword=vs2&r_os=windows&td=dHJrLmh1cnQtc2VudC1mZWx0LXJ1YmJlZC5ydW4vc253ZGFydGY&lvc=a9a07052HTTP Parser: No favicon
Source: https://www.advancednetworkprivacyimmediate.top/1iipmmkdt/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTczODE3NzAwMTQ1OA%3D%3D&lang=en&lid=20a5b3fd-685e-488b-b430-74bd9c6c5f91&ltd=dHJrLnNuYWtlLWJhc2lzLXN0dWNrLXJpdmVyLnJ1bg&pd2q=YTE9MjBhNWIzZmQtNjg1ZS00ODhiLWI0MzAtNzRiZDljNmM1ZjkxJmEyPWRkODk3YjI1LWU5MGYtNGZkYS04NWZjLTFjZmExYmYwYjk3NiZhMz04Mw&r_lang=en&r_okeyword=vs2&r_os=windows&td=dHJrLmh1cnQtc2VudC1mZWx0LXJ1YmJlZC5ydW4vc253ZGFydGY&lvc=a9a07052HTTP Parser: No favicon
Source: https://virtualshield.com/deals/mobile-antivirus-semi-annual-nt?aff=b72a653c6984a63af0b3&coupon=AFFF0B3_AV86&checkoutPath=checkout-v2&mbgDays=30&offer=AV86-6&cid=9e7ebb70-52f9-451a-b8f6-70957adf9754&pubid=29836HTTP Parser: No favicon
Source: https://virtualshield.com/deals/mobile-antivirus-semi-annual-nt?aff=b72a653c6984a63af0b3&coupon=AFFF0B3_AV86&checkoutPath=checkout-v2&mbgDays=30&offer=AV86-6&cid=9e7ebb70-52f9-451a-b8f6-70957adf9754&pubid=29836HTTP Parser: No favicon
Source: https://virtualshield.com/deals/mobile-antivirus-semi-annual-nt?aff=b72a653c6984a63af0b3&coupon=AFFF0B3_AV86&checkoutPath=checkout-v2&mbgDays=30&offer=AV86-6&cid=9e7ebb70-52f9-451a-b8f6-70957adf9754&pubid=29836HTTP Parser: No favicon
Source: https://virtualshield.com/deals/mobile-antivirus-semi-annual-nt?aff=b72a653c6984a63af0b3&coupon=AFFF0B3_AV86&checkoutPath=checkout-v2&mbgDays=30&offer=AV86-6&cid=9e7ebb70-52f9-451a-b8f6-70957adf9754&pubid=29836HTTP Parser: No favicon
Source: https://virtualshield.com/deals/mobile-antivirus-semi-annual-nt?aff=b72a653c6984a63af0b3&coupon=AFFF0B3_AV86&checkoutPath=checkout-v2&mbgDays=30&offer=AV86-6&cid=9e7ebb70-52f9-451a-b8f6-70957adf9754&pubid=29836HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No favicon
Source: http://designhomesinc.com/404.htmlHTTP Parser: No favicon
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="author".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="author".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="author".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="author".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="copyright".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="copyright".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="copyright".. found
Source: https://my.virtualshield.com/checkout-v2-nt/cs2wbgih?coupon=AFFF0B3_AV86&offer=AV86-6HTTP Parser: No <meta name="copyright".. found
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: unknownHTTPS traffic detected: 2.23.242.162:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknownHTTPS traffic detected: 2.23.242.162:443 -> 192.168.2.16:49711 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:53590 version: TLS 1.2
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: global trafficTCP traffic: 192.168.2.16:53522 -> 1.1.1.1:53
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.77.188
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 2.23.242.162
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknownTCP traffic detected without corresponding DNS query: 20.12.23.50
Source: global trafficHTTP traffic detected: GET /anchor HTTP/1.1Host: designhomesinc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /anchor/ HTTP/1.1Host: designhomesinc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /Ce6S6ujW1BYFZobd?cbdQXrZMccbJNGcczVBcdcjhczcfRCMmh3mcbbbcd HTTP/1.1Host: designhomesinc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: http://designhomesinc.com/anchor/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /404.html HTTP/1.1Host: designhomesinc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: http://designhomesinc.com/anchor/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /favicon.ico HTTP/1.1Host: designhomesinc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Referer: http://designhomesinc.com/404.htmlAccept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficDNS traffic detected: DNS query: rb.gy
Source: global trafficDNS traffic detected: DNS query: designhomesinc.com
Source: global trafficDNS traffic detected: DNS query: www.stranilk.com
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: www.todayy0urclickisgoinghere.com
Source: global trafficDNS traffic detected: DNS query: www.craftybyte42.com
Source: global trafficDNS traffic detected: DNS query: www.h4usj4d.com
Source: global trafficDNS traffic detected: DNS query: trk.hurt-sent-felt-rubbed.run
Source: global trafficDNS traffic detected: DNS query: www.advancednetworkprivacyimmediate.top
Source: global trafficDNS traffic detected: DNS query: cdn.advancednetworkprivacyimmediate.top
Source: global trafficDNS traffic detected: DNS query: ajax.aspnetcdn.com
Source: global trafficDNS traffic detected: DNS query: utll.digitalcodeweb.com
Source: global trafficDNS traffic detected: DNS query: virtualshield.com
Source: global trafficDNS traffic detected: DNS query: o467939.ingest.sentry.io
Source: global trafficDNS traffic detected: DNS query: us-prp.virtualshield.com
Source: global trafficDNS traffic detected: DNS query: snippets.freshchat.com
Source: global trafficDNS traffic detected: DNS query: wchat.freshchat.com
Source: global trafficDNS traffic detected: DNS query: a.omappapi.com
Source: global trafficDNS traffic detected: DNS query: api.virtualshield.com
Source: global trafficDNS traffic detected: DNS query: api.omappapi.com
Source: global trafficDNS traffic detected: DNS query: s.pinimg.com
Source: global trafficDNS traffic detected: DNS query: static.ads-twitter.com
Source: global trafficDNS traffic detected: DNS query: sc-static.net
Source: global trafficDNS traffic detected: DNS query: connect.facebook.net
Source: global trafficDNS traffic detected: DNS query: snap.licdn.com
Source: global trafficDNS traffic detected: DNS query: analytics.tiktok.com
Source: global trafficDNS traffic detected: DNS query: px.ads.linkedin.com
Source: global trafficDNS traffic detected: DNS query: tr.snapchat.com
Source: global trafficDNS traffic detected: DNS query: metrics.virtualshield.com
Source: global trafficDNS traffic detected: DNS query: ct.pinterest.com
Source: global trafficDNS traffic detected: DNS query: t.co
Source: global trafficDNS traffic detected: DNS query: analytics.twitter.com
Source: global trafficDNS traffic detected: DNS query: www.linkedin.com
Source: global trafficDNS traffic detected: DNS query: www.clarity.ms
Source: global trafficDNS traffic detected: DNS query: analytics.google.com
Source: global trafficDNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global trafficDNS traffic detected: DNS query: pixel.tapad.com
Source: global trafficDNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global trafficDNS traffic detected: DNS query: www.facebook.com
Source: global trafficDNS traffic detected: DNS query: tr6.snapchat.com
Source: global trafficDNS traffic detected: DNS query: z.clarity.ms
Source: global trafficDNS traffic detected: DNS query: c.clarity.ms
Source: global trafficDNS traffic detected: DNS query: assetscdn-wchat.freshchat.com
Source: global trafficDNS traffic detected: DNS query: my.virtualshield.com
Source: global trafficDNS traffic detected: DNS query: js.chargebee.com
Source: global trafficDNS traffic detected: DNS query: www.pinterest.com
Source: global trafficDNS traffic detected: DNS query: virtualshield.chargebeestaticv2.com
Source: global trafficDNS traffic detected: DNS query: newassets.hcaptcha.com
Source: global trafficDNS traffic detected: DNS query: api2.hcaptcha.com
Source: global trafficDNS traffic detected: DNS query: rts-static-prod.freshworksapi.com
Source: global trafficDNS traffic detected: DNS query: virtualshield.chargebee.com
Source: global trafficDNS traffic detected: DNS query: edge-admin.us-east-1.freshedge.net
Source: global trafficDNS traffic detected: DNS query: fc-use1-00-pics-bkt-00.s3.amazonaws.com
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 29 Jan 2025 18:57:21 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingContent-Encoding: gzipData Raw: 35 34 0d 0a 1f 8b 08 00 00 00 00 00 00 03 b3 c9 30 b4 0b 4a cd 49 2c 49 4d 51 08 48 4c 4f 55 c8 cb 2f 51 48 cb 2f cd 4b b1 d1 07 4a d9 14 d8 05 e7 17 15 55 ea 28 94 a7 2a 24 27 e6 81 65 33 f3 52 14 4a 32 12 4b 14 0a 80 1a f4 6c f4 0b ec 00 92 2e 89 84 46 00 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 540JI,IMQHLOU/QH/KJU(*$'e3RJ2Kl.F0
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 29 Jan 2025 18:57:21 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingContent-Encoding: gzipData Raw: 35 34 0d 0a 1f 8b 08 00 00 00 00 00 00 03 b3 c9 30 b4 0b 4a cd 49 2c 49 4d 51 08 48 4c 4f 55 c8 cb 2f 51 48 cb 2f cd 4b b1 d1 07 4a d9 14 d8 05 e7 17 15 55 ea 28 94 a7 2a 24 27 e6 81 65 33 f3 52 14 4a 32 12 4b 14 0a 80 1a f4 6c f4 0b ec 00 92 2e 89 84 46 00 00 00 0d 0a 30 0d 0a 0d 0a Data Ascii: 540JI,IMQHLOU/QH/KJU(*$'e3RJ2Kl.F0
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49744
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49743
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49742
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49741
Source: unknownNetwork traffic detected: HTTP traffic on port 54093 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54058 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53684 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53764 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53569 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53844 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49738
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49737
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49736
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49735
Source: unknownNetwork traffic detected: HTTP traffic on port 53523 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49734
Source: unknownNetwork traffic detected: HTTP traffic on port 49772 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49733
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49732
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49731
Source: unknownNetwork traffic detected: HTTP traffic on port 53993 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53603 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53557 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49749 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53649 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53924 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53878 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54012 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53717 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49729
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49728
Source: unknownNetwork traffic detected: HTTP traffic on port 53809 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49726
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49725
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49724
Source: unknownNetwork traffic detected: HTTP traffic on port 54081 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49723
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49722
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49721
Source: unknownNetwork traffic detected: HTTP traffic on port 54104 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49720
Source: unknownNetwork traffic detected: HTTP traffic on port 53625 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53650 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53900 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54024 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53730 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53570 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49760 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53856 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49719
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49718
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49717
Source: unknownNetwork traffic detected: HTTP traffic on port 49715 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49716
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49715
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49714
Source: unknownNetwork traffic detected: HTTP traffic on port 53936 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49711
Source: unknownNetwork traffic detected: HTTP traffic on port 53672 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49710
Source: unknownNetwork traffic detected: HTTP traffic on port 54046 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53752 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53958 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53981 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49709
Source: unknownNetwork traffic detected: HTTP traffic on port 53820 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53545 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49706
Source: unknownNetwork traffic detected: HTTP traffic on port 53788 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49737 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54102 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49781
Source: unknownNetwork traffic detected: HTTP traffic on port 53707 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49780
Source: unknownNetwork traffic detected: HTTP traffic on port 53868 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54059
Source: unknownNetwork traffic detected: HTTP traffic on port 53627 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53902 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54058
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54057
Source: unknownNetwork traffic detected: HTTP traffic on port 53533 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53659 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53934 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54062
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54061
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54060
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54067
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54066
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54065
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54064
Source: unknownNetwork traffic detected: HTTP traffic on port 53582 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49759 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49779
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49778
Source: unknownNetwork traffic detected: HTTP traffic on port 54048 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49777
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49776
Source: unknownNetwork traffic detected: HTTP traffic on port 54071 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49775
Source: unknownNetwork traffic detected: HTTP traffic on port 53754 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49774
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49773
Source: unknownNetwork traffic detected: HTTP traffic on port 53842 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49772
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49771
Source: unknownNetwork traffic detected: HTTP traffic on port 54002 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49770
Source: unknownNetwork traffic detected: HTTP traffic on port 53819 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54069
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54068
Source: unknownNetwork traffic detected: HTTP traffic on port 54036 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54074
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54073
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54072
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54071
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54078
Source: unknownNetwork traffic detected: HTTP traffic on port 54114 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54077
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54076
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54075
Source: unknownNetwork traffic detected: HTTP traffic on port 53786 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54070
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49769
Source: unknownNetwork traffic detected: HTTP traffic on port 53694 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49768
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49767
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49766
Source: unknownNetwork traffic detected: HTTP traffic on port 53946 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49765
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49764
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49763
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49762
Source: unknownNetwork traffic detected: HTTP traffic on port 53891 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49761
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49760
Source: unknownNetwork traffic detected: HTTP traffic on port 49725 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54014 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54079
Source: unknownNetwork traffic detected: HTTP traffic on port 53776 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49770 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53660 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54085
Source: unknownNetwork traffic detected: HTTP traffic on port 53720 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54084
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54083
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54088
Source: unknownNetwork traffic detected: HTTP traffic on port 53846 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54086
Source: unknownNetwork traffic detected: HTTP traffic on port 54136 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53615 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53991 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49759
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54081
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49758
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54080
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49757
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49756
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49755
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49754
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49753
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49752
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49751
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49750
Source: unknownNetwork traffic detected: HTTP traffic on port 53968 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53594 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53555 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53830 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49747 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53682 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53798 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53719 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54095
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54094
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54093
Source: unknownNetwork traffic detected: HTTP traffic on port 53742 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54098
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49749
Source: unknownNetwork traffic detected: HTTP traffic on port 53807 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54092
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49747
Source: unknownNetwork traffic detected: HTTP traffic on port 53637 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53912 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 54091
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49746
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49745
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53606
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53848
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53605
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53847
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53846
Source: unknownNetwork traffic detected: HTTP traffic on port 53698 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53603
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53845
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53609
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53608
Source: unknownNetwork traffic detected: HTTP traffic on port 53858 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54106 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53607
Source: unknownNetwork traffic detected: HTTP traffic on port 53589 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53849
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53840
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53602
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53844
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53601
Source: unknownNetwork traffic detected: HTTP traffic on port 53537 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53843
Source: unknownNetwork traffic detected: HTTP traffic on port 53944 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54078 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53600
Source: unknownNetwork traffic detected: HTTP traffic on port 53778 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53842
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53841
Source: unknownNetwork traffic detected: HTTP traffic on port 49769 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54032 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53617 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53617
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53859
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53616
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53858
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53615
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53857
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53614
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53856
Source: unknownNetwork traffic detected: HTTP traffic on port 49711 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53851
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53850
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53613
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53855
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53612
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53854
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53611
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53853
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53610
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53852
Source: unknownNetwork traffic detected: HTTP traffic on port 53910 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53744 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53956 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54009 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54118 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53881 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53652 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53560 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53628
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53627
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53869
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53626
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53868
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53625
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53867
Source: unknownNetwork traffic detected: HTTP traffic on port 53709 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53629
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53620
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53862
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53861
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53860
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53624
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53866
Source: unknownNetwork traffic detected: HTTP traffic on port 53686 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53865
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53622
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53864
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53621
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53863
Source: unknownNetwork traffic detected: HTTP traffic on port 54091 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49745 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53871 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53978 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53630 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53525 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53639
Source: unknownNetwork traffic detected: HTTP traffic on port 49757 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53922 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53638
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53637
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53879
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53636
Source: unknownNetwork traffic detected: HTTP traffic on port 53590 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53840 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53878
Source: unknownNetwork traffic detected: HTTP traffic on port 53710 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53817 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53631
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53873
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53630
Source: unknownNetwork traffic detected: HTTP traffic on port 53605 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53872
Source: unknownNetwork traffic detected: HTTP traffic on port 53559 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53871
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53635
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53877
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53634
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53876
Source: unknownNetwork traffic detected: HTTP traffic on port 53664 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53633
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53875
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53632
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53874
Source: unknownNetwork traffic detected: HTTP traffic on port 53791 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49723 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53880
Source: unknownNetwork traffic detected: HTTP traffic on port 54010 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53893 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54066 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49733 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53804
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53803
Source: unknownNetwork traffic detected: HTTP traffic on port 54022 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53802
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53801
Source: unknownNetwork traffic detected: HTTP traffic on port 49779 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53808
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53807
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53806
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53805
Source: unknownNetwork traffic detected: HTTP traffic on port 53839 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53800
Source: unknownNetwork traffic detected: HTTP traffic on port 53768 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53579 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53722 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53848 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53809
Source: unknownNetwork traffic detected: HTTP traffic on port 53919 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53674 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53815
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53814
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53813
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53812
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53819
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53818
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53817
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53816
Source: unknownNetwork traffic detected: HTTP traffic on port 53966 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53607 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53811
Source: unknownNetwork traffic detected: HTTP traffic on port 49767 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53662 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53810
Source: unknownNetwork traffic detected: HTTP traffic on port 53920 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53547 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53895 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53805 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53639 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54068 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53696 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53826
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53825
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53824
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53823
Source: unknownNetwork traffic detected: HTTP traffic on port 53734 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53629 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53821
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53820
Source: unknownNetwork traffic detected: HTTP traffic on port 54034 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53988 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53580 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49755 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53932 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53837
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53836
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53835
Source: unknownNetwork traffic detected: HTTP traffic on port 53756 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53861 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53839
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53838
Source: unknownNetwork traffic detected: HTTP traffic on port 54000 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53700 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53833
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53831
Source: unknownNetwork traffic detected: HTTP traffic on port 54056 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53830
Source: unknownNetwork traffic detected: HTTP traffic on port 53909 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54116 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53954 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53564
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53563
Source: unknownNetwork traffic detected: HTTP traffic on port 53929 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53562
Source: unknownNetwork traffic detected: HTTP traffic on port 49766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53569
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53568
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53566
Source: unknownNetwork traffic detected: HTTP traffic on port 53552 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49720 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53850 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53572
Source: unknownNetwork traffic detected: HTTP traffic on port 53896 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54006 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53571
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53570
Source: unknownNetwork traffic detected: HTTP traffic on port 53598 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53712 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53976 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53655 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53930 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53540 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53884 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54132 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53576
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53575
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53574
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53573
Source: unknownNetwork traffic detected: HTTP traffic on port 53758 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53579
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53578
Source: unknownNetwork traffic detected: HTTP traffic on port 54075 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53577
Source: unknownNetwork traffic detected: HTTP traffic on port 53826 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53793 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53608 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53583
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53582
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53581
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53580
Source: unknownNetwork traffic detected: HTTP traffic on port 53690 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53539 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53814 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53998 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53862 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53587
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53586
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53585
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53584
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53589
Source: unknownNetwork traffic detected: HTTP traffic on port 53667 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53942 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53588
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53590
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53594
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53593
Source: unknownNetwork traffic detected: HTTP traffic on port 54120 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53591
Source: unknownNetwork traffic detected: HTTP traffic on port 53724 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49709 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54109 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53598
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53597
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53596
Source: unknownNetwork traffic detected: HTTP traffic on port 53689 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53964 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53905 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53599
Source: unknownNetwork traffic detected: HTTP traffic on port 53576 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53633 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53746 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54041 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49754 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53562 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53529
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53528
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53769
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53526
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53768
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53763
Source: unknownNetwork traffic detected: HTTP traffic on port 53736 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53762
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53761
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53760
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53525
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53767
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53524
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53766
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53523
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53765
Source: unknownNetwork traffic detected: HTTP traffic on port 53665 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53764
Source: unknownNetwork traffic detected: HTTP traffic on port 53940 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53802 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53770
Source: unknownNetwork traffic detected: HTTP traffic on port 53771 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53986 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54119 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49776 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54065 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53588 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53539
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53538
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53537
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53779
Source: unknownNetwork traffic detected: HTTP traffic on port 53836 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53532
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53774
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53531
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53773
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53530
Source: unknownNetwork traffic detected: HTTP traffic on port 53702 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53772
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53771
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53536
Source: unknownNetwork traffic detected: HTTP traffic on port 49742 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53778
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53777
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53534
Source: unknownHTTPS traffic detected: 2.23.242.162:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknownHTTPS traffic detected: 2.23.242.162:443 -> 192.168.2.16:49711 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:53590 version: TLS 1.2
Source: classification engineClassification label: mal48.phis.win@33/226@203/685
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2104 --field-trial-handle=1908,i,10353729756610847623,6904398638014860638,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://rb.gy/vnpcib#Ce6S6ujW1BYFZobd?cbdQXrZMccbJNGcczVBcdcjhczcfRCMmh3mcbbbcd"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2104 --field-trial-handle=1908,i,10353729756610847623,6904398638014860638,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6416 --field-trial-handle=1908,i,10353729756610847623,6904398638014860638,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6416 --field-trial-handle=1908,i,10353729756610847623,6904398638014860638,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire Infrastructure1
Drive-by Compromise		Windows Management Instrumentation1
Browser Extensions		1
Process Injection		3
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System2
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/Job1
Registry Run Keys / Startup Folder		1
Registry Run Keys / Startup Folder		1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media3
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive4
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture3
Ingress Tool Transfer		Traffic DuplicationData Destruction

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.