Edit tour

Windows Analysis Report
https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4RaUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$

Overview

General Information

Sample URL:	https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZ
Analysis ID:	1633619
Infos:

Detection

Score:	48
Range:	0 - 100
Confidence:	100%

Signatures

AI detected landing page (webpage, office document or email)

AI detected suspicious URL

Creates files inside the system directory

Deletes files inside the Windows folder

Detected non-DNS traffic on DNS port

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 3308 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 792 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1960,i,3726840579325094272,10312744150735412202,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2200 /prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 5344 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$" MD5: E81F54E6C1129887AEA47E7D092680BF)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

AI detected landing page (webpage, office document or email)

Source: https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$	Joe Sandbox AI: Page contains button: 'Accept' Source: '1.3.pages.csv'
Source: https://0utl00k_secure_pdfsharing.wesendit.com/	Joe Sandbox AI: Page contains button: 'Click or Drag & Drop' Source: '2.6.pages.csv'

AI detected suspicious URL

Source: https://0utl00k_secure_pdfsharing.wesendit.com

Joe Sandbox AI: The URL 'https://0utl00k_secure_pdfsharing.wesendit.com' appears to be a typosquatting attempt targeting the well-known brand 'Outlook'. The use of '0utl00k' instead of 'outlook' involves visual character substitutions where 'O' is replaced by '0', which can easily confuse users. The subdomain 'secure_pdfsharing' suggests a service related to document sharing, which is a common feature associated with email services like Outlook. The domain 'wesendit.com' could be a legitimate file-sharing service, but the combination with the misleading subdomain increases the likelihood of user confusion. The structural similarity and the context of the subdomain usage strongly suggest an attempt to deceive users into thinking they are interacting with a legitimate Outlook service.

Source:	HTTP Parser: (()=>{"use strict";var e,g={},v={};function r(e){var n=v[e];if(void 0!==n)return n.exports;var t=v[e]={id:e,loaded:!1,exports:{}};return g[e].call(t.exports,t,t.exports,r),t.loaded=!0,t.exports}r.m=g,r.amdo={},e=[],r.o=(n,t,i,f)=>{if(!t){var a=1/0;for(o=0;o<e.length;o++){for(var[t,i,f]=e[o],c=!0,d=0;d<t.length;d++)(!1&f\|\|a>=f)&&object.keys(r.o).every(b=>r.o[b](t[d]))?t.splice(d--,1):(c=!1,f<a&&(a=f));if(c){e.splice(o--,1);var u=i();void 0!==u&&(n=u)}}return n}f=f\|\|0;for(var o=e.length;o>0&&e[o-1][2]>f;o--)e[o]=e[o-1];e[o]=[t,i,f]},r.n=e=>{var n=e&&e.__esmodule?()=>e.default:()=>e;return r.d(n,{a:n}),n},(()=>{var n,e=object.getprototypeof?t=>object.getprototypeof(t):t=>t.__proto__;r.t=function(t,i){if(1&i&&(t=this(t)),8&i\|\|"object"==typeof t&&t&&(4&i&&t.__esmodule\|\|16&i&&"function"==typeof t.then))return t;var f=object.create(null);r.r(f);var o={};n=n\|\|[null,e({}),e([]),e(e)];for(var a=2&i&&t;"object"==typeof a&&!~n.indexof(a);a=e(a))object.getownpropertynames(a).foreach(c=>o[c]=()=>t[c]);return o.default=()=>...
Source: https://0utl00k_secure_pdfsharing.wesendit.com/static/js/main.3d83dd51.js	HTTP Parser: /! for license information please see main.3d83dd51.js.license.txt /(()=>{var __webpack_modules__={88142:(e,t,n)=>{"use strict";n.d(t,{r:()=>c});var r,i,o=n(47313);const a=["title","titleid"];function s(){return s=object.assign?object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var n=arguments[t];for(var r in n)({}).hasownproperty.call(n,r)&&(e[r]=n[r])}return e},s.apply(null,arguments)}function l(e,t){let{title:n,titleid:l}=e,c=function(e,t){if(null==e)return{};var n,r,i=function(e,t){if(null==e)return{};var n={};for(var r in e)if({}.hasownproperty.call(e,r)){if(t.includes(r))continue;n[r]=e[r]}return n}(e,t);if(object.getownpropertysymbols){var o=object.getownpropertysymbols(e);for(r=0;r<o.length;r++)n=o[r],t.includes(n)\|\|{}.propertyisenumerable.call(e,n)&&(i[n]=e[n])}return i}(e,a);return o.createelement("svg",s({width:32,height:32,viewbox:"0 0 32 32",fill:"none",xmlns:"http://www.w3.org/2000/svg",ref:t,"aria-labelledby":l},c),n?o.createelement("title",{id:l},n):null,r\|\|(r=o.createelem...

Source: https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$

HTTP Parser: No favicon

Source: chrome.exe

Memory has grown: Private usage: 8MB later: 32MB

Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61920 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:61958 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveOrigin: https://0utl00k_secure_pdfsharing.wesendit.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /modal/v1/modal.min.js HTTP/1.1Host: media.payrexx.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /upp/payment/js/secure-fields-2.0.0.min.js HTTP/1.1Host: pay.datatrans.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /upp/payment/js/paypal-button-1.0.0.js HTTP/1.1Host: pay.datatrans.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/oixn91vy8x HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/js/api.min.js HTTP/1.1Host: a.trstplse.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWt0TlNTa2Fpa0t2RkVtbXZtTngzVnRNYnBDSG9Od3kyTW9SVThZUkU4ZTZzbiIsInN1YiI6IjM5ZTQ2NjUzMmM4YjNiYjUwYzdlNmQ0ZWFlZWU3MTUyYmFiMGMxOWU1MWJlY2I4MGNiNzE1ZjVjYmJmNThlZGUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTc0MTYwODk2MywiZXhwIjoxNzQxNjk1MzYzfQ.DzU7RoukKUw2nNwNS7UYVnmfla5Z6LwPCfGOvlFPopim2SBEL7Ei1dZNKIfg7k5HnX45nppYvg2YV-9dQEc1Dg&projectId=b7e27dea69b618cdbf49fbef3df26aae&ua=wc-2%2Fjs-2.6.2%2Fwindows10-chrome-134.0.0%2Fbrowser%3A0utl00k_secure_pdfsharing.wesendit.com&useOnCloseEvent=true HTTP/1.1Host: relay.walletconnect.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://0utl00k_secure_pdfsharing.wesendit.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: pRB2XgxQ+AS65LVSSaQc6g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /web2/api/admins/actuator/togglz-status HTTP/1.1Host: api-prod.wesendit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/plain, /sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/admins/actuator/togglz-status HTTP/1.1Host: api-prod.wesendit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.1002115152.1741608963
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /config/AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO HTTP/1.1Host: api.gleap.ioConnection: keep-alivesec-ch-ua-platform: "Windows"Api-Token: AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBOGleap-Hash: 8da5dba56f547685b47fd527d5892d3421b8ef8c6eef9b2c3d1a102cf239f7cbsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Content-Type: application/json;charset=UTF-8Gleap-Id: 1d6c83bc-4aa3-448f-867a-7068ceba1360Accept: /Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/0.8.0/clarity.js HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: CLID=de4fa2ba95e945ca82bdf3ed61e7c27a.20250310.20260310
Source: global traffic	HTTP traffic detected: GET /signals/config/608403918567114?v=2.9.186&r=stable&domain=0utl00k_secure_pdfsharing.wesendit.com&hme=a72824d1c4e9fa19885a7ddba1edefb2829b45a4452ba98f5c6581985a4ea493&ex_m=71%2C123%2C108%2C112%2C62%2C4%2C101%2C70%2C16%2C98%2C90%2C51%2C55%2C175%2C178%2C190%2C186%2C187%2C189%2C29%2C102%2C53%2C78%2C188%2C170%2C173%2C183%2C184%2C191%2C133%2C41%2C196%2C193%2C194%2C34%2C146%2C15%2C50%2C200%2C199%2C135%2C18%2C40%2C1%2C43%2C66%2C67%2C68%2C72%2C94%2C17%2C14%2C97%2C93%2C92%2C109%2C52%2C111%2C39%2C110%2C30%2C95%2C26%2C171%2C174%2C143%2C87%2C57%2C85%2C33%2C74%2C0%2C96%2C32%2C28%2C83%2C84%2C89%2C47%2C46%2C88%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C58%2C63%2C65%2C76%2C54%2C103%2C27%2C77%2C9%2C8%2C81%2C48%2C21%2C105%2C104%2C106%2C99%2C10%2C20%2C3%2C38%2C75%2C19%2C5%2C91%2C82%2C44%2C35%2C86%2C2%2C36%2C64%2C42%2C107%2C45%2C80%2C69%2C113%2C61%2C60%2C31%2C100%2C59%2C56%2C49%2C79%2C73%2C24%2C114 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /config/AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/oixn91vy8x?ref=gtm2 HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: CLID=de4fa2ba95e945ca82bdf3ed61e7c27a.20250310.20260310
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/users/public/advertisement-backgrounds HTTP/1.1Host: api-prod.wesendit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/plain, /sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/users/public/plans/WEB2 HTTP/1.1Host: api-prod.wesendit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/plain, /sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/users/public/branding-by-url?url=0utl00k_secure_pdfsharing HTTP/1.1Host: api-prod.wesendit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/plain, /sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/users/public/advertisement-backgrounds HTTP/1.1Host: api-prod.wesendit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.1002115152.1741608963; session-AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO=%7B%22gleapId%22%3A%221d6c83bc-4aa3-448f-867a-7068ceba1360%22%2C%22gleapHash%22%3A%228da5dba56f547685b47fd527d5892d3421b8ef8c6eef9b2c3d1a102cf239f7cb%22%2C%22value%22%3A0%2C%22lang%22%3A%22en%22%2C%22id%22%3A%2267ced806562ec537522f6c0d%22%7D; _clck=1tujsc%7C2%7Cfu3%7C0%7C1895; _clsk=10x28r0%7C1741608975659%7C1%7C1%7Ci.clarity.ms%2Fcollect; _fbp=fb.1.1741608976613.45662251198313053; _ga=GA1.1.1511820263.1741608978; _ga_EHZSQKTF1P=GS1.1.1741608978.1.0.1741608978.60.0.1540910897
Source: global traffic	HTTP traffic detected: GET /web2/api/users/public/plans/WEB2 HTTP/1.1Host: api-prod.wesendit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.1002115152.1741608963; session-AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO=%7B%22gleapId%22%3A%221d6c83bc-4aa3-448f-867a-7068ceba1360%22%2C%22gleapHash%22%3A%228da5dba56f547685b47fd527d5892d3421b8ef8c6eef9b2c3d1a102cf239f7cb%22%2C%22value%22%3A0%2C%22lang%22%3A%22en%22%2C%22id%22%3A%2267ced806562ec537522f6c0d%22%7D; _clck=1tujsc%7C2%7Cfu3%7C0%7C1895; _clsk=10x28r0%7C1741608975659%7C1%7C1%7Ci.clarity.ms%2Fcollect; _fbp=fb.1.1741608976613.45662251198313053; _ga=GA1.1.1511820263.1741608978; _ga_EHZSQKTF1P=GS1.1.1741608978.1.0.1741608978.60.0.1540910897
Source: global traffic	HTTP traffic detected: GET /web2/api/users/public/branding-by-url?url=0utl00k_secure_pdfsharing HTTP/1.1Host: api-prod.wesendit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.1002115152.1741608963; session-AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO=%7B%22gleapId%22%3A%221d6c83bc-4aa3-448f-867a-7068ceba1360%22%2C%22gleapHash%22%3A%228da5dba56f547685b47fd527d5892d3421b8ef8c6eef9b2c3d1a102cf239f7cb%22%2C%22value%22%3A0%2C%22lang%22%3A%22en%22%2C%22id%22%3A%2267ced806562ec537522f6c0d%22%7D; _clck=1tujsc%7C2%7Cfu3%7C0%7C1895; _clsk=10x28r0%7C1741608975659%7C1%7C1%7Ci.clarity.ms%2Fcollect; _fbp=fb.1.1741608976613.45662251198313053; _ga=GA1.1.1511820263.1741608978; _ga_EHZSQKTF1P=GS1.1.1741608978.1.0.1741608978.60.0.1540910897
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=608403918567114&ev=PageView&dl=https%3A%2F%2F0utl00k_secure_pdfsharing.wesendit.com%2Fdl%2F9WeFG1R9WGJTbgaCO%2Fa3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__%3B!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk%24&rl=&if=false&ts=1741608976615&sw=1280&sh=1024&v=2.9.186&r=stable&ec=0&o=4126&fbp=fb.1.1741608976613.45662251198313053&ler=empty&cdl=API_unavailable&it=1741608962861&coo=false&exp=k0&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=608403918567114&ev=PageView&dl=https%3A%2F%2F0utl00k_secure_pdfsharing.wesendit.com%2Fdl%2F9WeFG1R9WGJTbgaCO%2Fa3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__%3B!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk%24&rl=&if=false&ts=1741608976615&sw=1280&sh=1024&v=2.9.186&r=stable&ec=0&o=4126&fbp=fb.1.1741608976613.45662251198313053&ler=empty&cdl=API_unavailable&it=1741608962861&coo=false&exp=k0&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Attribution-Reporting-Eligible: trigger, event-source;navigation-sourceAttribution-Reporting-Support: web=osSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=608403918567114&ev=PageView&dl=https%3A%2F%2F0utl00k_secure_pdfsharing.wesendit.com%2Fdl%2F9WeFG1R9WGJTbgaCO%2Fa3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__%3B!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk%24&rl=&if=false&ts=1741608976615&sw=1280&sh=1024&v=2.9.186&r=stable&ec=0&o=4126&fbp=fb.1.1741608976613.45662251198313053&ler=empty&cdl=API_unavailable&it=1741608962861&coo=false&exp=k0&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=608403918567114&ev=PageView&dl=https%3A%2F%2F0utl00k_secure_pdfsharing.wesendit.com%2Fdl%2F9WeFG1R9WGJTbgaCO%2Fa3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__%3B!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk%24&rl=&if=false&ts=1741608976615&sw=1280&sh=1024&v=2.9.186&r=stable&ec=0&o=4126&fbp=fb.1.1741608976613.45662251198313053&ler=empty&cdl=API_unavailable&it=1741608962861&coo=false&exp=k0&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c.gif HTTP/1.1Host: c.clarity.msConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c.gif?ctsa=mr&CtsSyncId=A83FF92E49B04D049BF32F8A70486F3F&MUID=18FC82C6D9C0617412F1976DD8BE6055 HTTP/1.1Host: c.clarity.msConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: SM=T; MUID=26D482A75DBE6091368E970C59BE6EFA
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/files/transfers/public/9WeFG1R9WGJTbgaCO HTTP/1.1Host: api-prod.wesendit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/plain, /sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c.gif?ctsa=mr&CtsSyncId=A83FF92E49B04D049BF32F8A70486F3F&MUID=18FC82C6D9C0617412F1976DD8BE6055 HTTP/1.1Host: c.clarity.msConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: SM=C; MUID=18FC82C6D9C0617412F1976DD8BE6055; MR=0; ANONCHK=0
Source: global traffic	HTTP traffic detected: GET /web2/api/files/transfers/public/9WeFG1R9WGJTbgaCO HTTP/1.1Host: api-prod.wesendit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.1002115152.1741608963; session-AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO=%7B%22gleapId%22%3A%221d6c83bc-4aa3-448f-867a-7068ceba1360%22%2C%22gleapHash%22%3A%228da5dba56f547685b47fd527d5892d3421b8ef8c6eef9b2c3d1a102cf239f7cb%22%2C%22value%22%3A0%2C%22lang%22%3A%22en%22%2C%22id%22%3A%2267ced806562ec537522f6c0d%22%7D; _clck=1tujsc%7C2%7Cfu3%7C0%7C1895; _fbp=fb.1.1741608976613.45662251198313053; _ga=GA1.1.1511820263.1741608978; _ga_EHZSQKTF1P=GS1.1.1741608978.1.0.1741608978.60.0.1540910897; _clsk=10x28r0%7C1741608979915%7C2%7C1%7Ci.clarity.ms%2Fcollect
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/files/transfers/public/9WeFG1R9WGJTbgaCO HTTP/1.1Host: api-prod.wesendit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/plain, /sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web2/api/files/transfers/public/9WeFG1R9WGJTbgaCO HTTP/1.1Host: api-prod.wesendit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.1002115152.1741608963; session-AEIFIrbaR7QC9Q6OFmAQtHhsNcWLjEBO=%7B%22gleapId%22%3A%221d6c83bc-4aa3-448f-867a-7068ceba1360%22%2C%22gleapHash%22%3A%228da5dba56f547685b47fd527d5892d3421b8ef8c6eef9b2c3d1a102cf239f7cb%22%2C%22value%22%3A0%2C%22lang%22%3A%22en%22%2C%22id%22%3A%2267ced806562ec537522f6c0d%22%7D; _clck=1tujsc%7C2%7Cfu3%7C0%7C1895; _fbp=fb.1.1741608976613.45662251198313053; _ga=GA1.1.1511820263.1741608978; _clsk=10x28r0%7C1741608979915%7C2%7C1%7Ci.clarity.ms%2Fcollect; _ga_EHZSQKTF1P=GS1.1.1741608978.1.1.1741609030.8.0.1540910897
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sessions/ping HTTP/1.1Host: api.gleap.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/?chainId=eip155:56&projectId=b7e27dea69b618cdbf49fbef3df26aae HTTP/1.1Host: rpc.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: 0utl00k_secure_pdfsharing.wesendit.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: media.payrexx.com
Source: global traffic	DNS traffic detected: DNS query: widget.crowdswap.org
Source: global traffic	DNS traffic detected: DNS query: pay.datatrans.com
Source: global traffic	DNS traffic detected: DNS query: www.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: a.trstplse.com
Source: global traffic	DNS traffic detected: DNS query: api.gleap.io
Source: global traffic	DNS traffic detected: DNS query: o4503915977375744.ingest.sentry.io
Source: global traffic	DNS traffic detected: DNS query: api-prod.wesendit.com
Source: global traffic	DNS traffic detected: DNS query: www.wesendit.com
Source: global traffic	DNS traffic detected: DNS query: api.trstplse.com
Source: global traffic	DNS traffic detected: DNS query: relay.walletconnect.com
Source: global traffic	DNS traffic detected: DNS query: api.web3modal.com
Source: global traffic	DNS traffic detected: DNS query: i.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: static.wesendit.com
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: c.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: lens.google.com
Source: global traffic	DNS traffic detected: DNS query: rpc.walletconnect.com
Source: global traffic	DNS traffic detected: DNS query: data-seed-prebsc-1-s1.binance.org
Source: global traffic	DNS traffic detected: DNS query: _8545._https.data-seed-prebsc-1-s1.binance.org

Source: unknown

HTTP traffic detected: POST /api/4505306090373120/envelope/?sentry_key=bda22e349cac4fc29c45af1a4199df4a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.92.0 HTTP/1.1Host: o4503915977375744.ingest.sentry.ioConnection: keep-aliveContent-Length: 451sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: text/plain;charset=UTF-8sec-ch-ua-mobile: ?0Accept: */*Origin: https://0utl00k_secure_pdfsharing.wesendit.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://0utl00k_secure_pdfsharing.wesendit.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:16:05 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:16:13 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:16:15 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:16:17 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:16:17 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:16:20 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:16:23 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:16:25 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:16:35 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:16:45 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:16:55 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:17:05 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:14 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:17:15 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:16 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:18 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:21 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:27 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:17:27 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:29 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:32 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:35 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:17:36 GMTconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Mon, 10 Mar 2025 12:17:38 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-powered-by: Expressaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8content-length: 152vary: Accept-Encodingdate: Mon, 10 Mar 2025 12:17:45 GMTconnection: close

Source: unknown	Network traffic detected: HTTP traffic on port 62028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62040
Source: unknown	Network traffic detected: HTTP traffic on port 62108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62042
Source: unknown	Network traffic detected: HTTP traffic on port 61952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62086 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61985
Source: unknown	Network traffic detected: HTTP traffic on port 62040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61987
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62033
Source: unknown	Network traffic detected: HTTP traffic on port 61969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61980
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62036
Source: unknown	Network traffic detected: HTTP traffic on port 62092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62037
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62050
Source: unknown	Network traffic detected: HTTP traffic on port 62000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62051
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62053
Source: unknown	Network traffic detected: HTTP traffic on port 62046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62103 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61999
Source: unknown	Network traffic detected: HTTP traffic on port 61987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62043
Source: unknown	Network traffic detected: HTTP traffic on port 62057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61990
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62048
Source: unknown	Network traffic detected: HTTP traffic on port 62074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61995
Source: unknown	Network traffic detected: HTTP traffic on port 62051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62062
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62064
Source: unknown	Network traffic detected: HTTP traffic on port 62045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62055
Source: unknown	Network traffic detected: HTTP traffic on port 61982 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62058
Source: unknown	Network traffic detected: HTTP traffic on port 61963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62059
Source: unknown	Network traffic detected: HTTP traffic on port 62098 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62073
Source: unknown	Network traffic detected: HTTP traffic on port 62023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62074
Source: unknown	Network traffic detected: HTTP traffic on port 61999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62075
Source: unknown	Network traffic detected: HTTP traffic on port 61957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62067
Source: unknown	Network traffic detected: HTTP traffic on port 61968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62069
Source: unknown	Network traffic detected: HTTP traffic on port 62093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62030 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61949
Source: unknown	Network traffic detected: HTTP traffic on port 61994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62112
Source: unknown	Network traffic detected: HTTP traffic on port 62079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62114
Source: unknown	Network traffic detected: HTTP traffic on port 62096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62115
Source: unknown	Network traffic detected: HTTP traffic on port 62029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62007
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61952
Source: unknown	Network traffic detected: HTTP traffic on port 62064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61957
Source: unknown	Network traffic detected: HTTP traffic on port 61983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62002
Source: unknown	Network traffic detected: HTTP traffic on port 62036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61950
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62005
Source: unknown	Network traffic detected: HTTP traffic on port 62091 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62006
Source: unknown	Network traffic detected: HTTP traffic on port 62112 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62007 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62020
Source: unknown	Network traffic detected: HTTP traffic on port 62106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62019
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62010
Source: unknown	Network traffic detected: HTTP traffic on port 62058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61960
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62015
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62016
Source: unknown	Network traffic detected: HTTP traffic on port 62075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62017
Source: unknown	Network traffic detected: HTTP traffic on port 62052 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49698 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62030
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62031
Source: unknown	Network traffic detected: HTTP traffic on port 61995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61974
Source: unknown	Network traffic detected: HTTP traffic on port 61989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61976
Source: unknown	Network traffic detected: HTTP traffic on port 62101 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61979
Source: unknown	Network traffic detected: HTTP traffic on port 62013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49687 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62022
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61970
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62026
Source: unknown	Network traffic detected: HTTP traffic on port 62097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62028
Source: unknown	Network traffic detected: HTTP traffic on port 61937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62054 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49698
Source: unknown	Network traffic detected: HTTP traffic on port 62025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49694
Source: unknown	Network traffic detected: HTTP traffic on port 61972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62019 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62078 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49687
Source: unknown	Network traffic detected: HTTP traffic on port 61996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62042 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62111 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49694 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61938
Source: unknown	Network traffic detected: HTTP traffic on port 62105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61930
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62107
Source: unknown	Network traffic detected: HTTP traffic on port 61991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62109
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61935
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61937
Source: unknown	Network traffic detected: HTTP traffic on port 62020 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62100
Source: unknown	Network traffic detected: HTTP traffic on port 61985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62103
Source: unknown	Network traffic detected: HTTP traffic on port 62059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62104
Source: unknown	Network traffic detected: HTTP traffic on port 61960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 62076 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62081
Source: unknown	Network traffic detected: HTTP traffic on port 62099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62084
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62086
Source: unknown	Network traffic detected: HTTP traffic on port 61971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62076
Source: unknown	Network traffic detected: HTTP traffic on port 62033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62077
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62079
Source: unknown	Network traffic detected: HTTP traffic on port 61980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62091
Source: unknown	Network traffic detected: HTTP traffic on port 61930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62092
Source: unknown	Network traffic detected: HTTP traffic on port 61976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62094
Source: unknown	Network traffic detected: HTTP traffic on port 61997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62095
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62096
Source: unknown	Network traffic detected: HTTP traffic on port 62004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62097
Source: unknown	Network traffic detected: HTTP traffic on port 62067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62088 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62088
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62089
Source: unknown	Network traffic detected: HTTP traffic on port 62032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61992 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62098
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62099
Source: unknown	Network traffic detected: HTTP traffic on port 62077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62094 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62115 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61981 -> 443

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir3308_215861377

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir3308_215861377

Source: classification engine

Classification label: mal48.win@23/57@84/443

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1960,i,3726840579325094272,10312744150735412202,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2200 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1960,i,3726840579325094272,10312744150735412202,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2200 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	1 Scripting	Valid Accounts	Windows Management Instrumentation	2 Browser Extensions	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	1 Scripting	1 Extra Window Memory Injection	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 Deobfuscate/Decode Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	1 File Deletion	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction
Gather Victim Network Information	Server	Cloud Accounts	Launchd	Network Logon Script	Network Logon Script	1 Extra Window Memory Injection	LSA Secrets	Internet Connection Discovery	SSH	Keylogging	Fallback Channels	Scheduled Transfer	Data Encrypted for Impact

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report
https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4RaUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Software Vulnerabilities

Networking

System Summary

Mitre Att&ck Matrix

Screenshots

Thumbnails

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t__;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4R__aUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Software Vulnerabilities

Networking

System Summary

Mitre Att&ck Matrix

Screenshots

Thumbnails

Windows Analysis Report
https://0utl00k_secure_pdfsharing.wesendit.com/dl/9WeFG1R9WGJTbgaCO/a3Jpc3RhbC5wbGFpc3RlZEBzb2RleG8uY29t;!!P5FZM7ryyeY!UznDjsW7gO6EJncqNmJhgeM1Zawk4RaUyCoG6Jb-mYlr-79K2gn3tFm6bOpnkuKuN_n69fA8HZASZsr-9bQyk$