There are no high impact signatures.
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic |
Jump to behavior |
Source: unknown |
HTTPS traffic detected: 192.185.73.90:443 -> 192.168.2.3:49776 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 192.185.73.90:443 -> 192.168.2.3:49775 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 13.226.145.2:443 -> 192.168.2.3:49836 version: TLS 1.2 |
Source: global traffic |
HTTP traffic detected: GET / HTTP/1.1Host: covid19response.lcConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9 |
Source: 000003.log3.1.dr |
String found in binary or memory: -_https://www.youtube.com equals www.youtube.com (Youtube) |
Source: 000003.log3.1.dr |
String found in binary or memory: ._https://www.youtube.com equals www.youtube.com (Youtube) |
Source: 000003.log3.1.dr |
String found in binary or memory: 0_https://www.youtube.com equals www.youtube.com (Youtube) |
Source: 000003.log3.1.dr |
String found in binary or memory: 5_https://www.youtube.com equals www.youtube.com (Youtube) |
Source: 9763f2044ebb415c_0.1.dr |
String found in binary or memory: ;~]_keyhttps://www.youtube.com/s/player/a081deec/player_ias.vflset/en_US/embed.js equals www.youtube.com (Youtube) |
Source: 000003.log0.1.dr |
String found in binary or memory: Gnamespace-b83fe6fa_853d_4823_91da_eb7a70645490-https://www.youtube.com/ equals www.youtube.com (Youtube) |
Source: 54abfa9a2964c89f_0.1.dr |
String found in binary or memory: M(j_keyhttps://www.youtube.com/s/player/a081deec/player_ias.vflset/en_US/base.js equals www.youtube.com (Youtube) |
Source: 000003.log3.1.dr |
String found in binary or memory: META:https://www.youtube.com equals www.youtube.com (Youtube) |
Source: Current Session.1.dr |
String found in binary or memory: Thttps://www.youtube.com/embed/75SBK3bs-dM?rel=0&controls=1&autoplay=0&mute=0&start=0 equals www.youtube.com (Youtube) |
Source: Current Session.1.dr |
String found in binary or memory: Thttps://www.youtube.com/embed/N_sTXJnMk0I?rel=0&controls=1&autoplay=0&mute=0&start=0 equals www.youtube.com (Youtube) |
Source: Current Session.1.dr |
String found in binary or memory: Thttps://www.youtube.com/embed/eFZ38sUE7_U?rel=0&controls=1&autoplay=0&mute=0&start=0 equals www.youtube.com (Youtube) |
Source: Current Session.1.dr |
String found in binary or memory: Thttps://www.youtube.com/embed/uRwrwmu3l1A?rel=0&controls=1&autoplay=0&mute=0&start=0 equals www.youtube.com (Youtube) |
Source: 399580c71f9e279d_0.1.dr |
String found in binary or memory: W_keyhttps://www.youtube.com/s/player/a081deec/www-embed-player.vflset/www-embed-player.js equals www.youtube.com (Youtube) |
Source: 000003.log3.1.dr |
String found in binary or memory: _https://www.youtube.com equals www.youtube.com (Youtube) |
Source: c740d5a6270d7d3d_0.1.dr |
String found in binary or memory: _keyhttps://www.youtube.com/s/player/a081deec/fetch-polyfill.vflset/fetch-polyfill.js equals www.youtube.com (Youtube) |
Source: 54abfa9a2964c89f_0.1.dr |
String found in binary or memory: _keyhttps://www.youtube.com/s/player/a081deec/player_ias.vflset/en_US/base.js equals www.youtube.com (Youtube) |
Source: 9763f2044ebb415c_0.1.dr |
String found in binary or memory: _keyhttps://www.youtube.com/s/player/a081deec/player_ias.vflset/en_US/embed.js equals www.youtube.com (Youtube) |
Source: e9605736811a0770_0.1.dr |
String found in binary or memory: _keyhttps://www.youtube.com/s/player/a081deec/player_ias.vflset/en_US/remote.js equals www.youtube.com (Youtube) |
Source: 399580c71f9e279d_0.1.dr |
String found in binary or memory: _keyhttps://www.youtube.com/s/player/a081deec/www-embed-player.vflset/www-embed-player.js equals www.youtube.com (Youtube) |
Source: Current Session.1.dr |
String found in binary or memory: https://www.youtube.com equals www.youtube.com (Youtube) |
Source: Current Session.1.dr |
String found in binary or memory: https://www.youtube.com" equals www.youtube.com (Youtube) |
Source: e9605736811a0770_0.1.dr |
String found in binary or memory: m_keyhttps://www.youtube.com/s/player/a081deec/player_ias.vflset/en_US/remote.js equals www.youtube.com (Youtube) |
Source: 33936995-cbc4-439b-afe2-a57b04438586.tmp.2.dr |
String found in binary or memory: {"net":{"http_server_properties":{"servers":[{"isolation":[],"server":"https://ssl.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://apis.google.com","supports_spdy":true},{"isolation":[],"server":"https://play.google.com","supports_spdy":true},{"isolation":[],"server":"https://ogs.google.com","supports_spdy":true},{"isolation":[],"server":"https://dns.google","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895868689013","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://accounts.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895868719748","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://redirector.gvt1.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895868929179","port":443,"protocol_str":"quic"},{"advertised_versions":[50],"expiration":"13275895868929184","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://r5---sn-4g5e6nss.gvt1.com"},{"isolation":[],"server":"https://cdnjs.cloudflare.com","supports_spdy":true},{"isolation":[],"server":"https://d3e54v103j8qbb.cloudfront.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895902866390","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://static.doubleclick.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895903350898","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://googleads.g.doubleclick.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895903417121","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://yt3.ggpht.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895903444505","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://i.ytimg.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895912509613","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://clients2.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13275895912729149","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://clients2.googleusercontent.com","supports_spdy":true},{"alternative_service":[{"advertised_ve |