Score: | 72 |
Range: | 0 - 100 |
Whitelisted: | false |
AV Detection |
---|
Source: |
Avira URL Cloud: |
Source: |
HTTPS traffic detected: |
Source: |
DNS traffic detected: |
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
Source: |
HTTP traffic detected: |
Source: |
HTTPS traffic detected: |
System Summary |
---|
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
||
Source: |
Matched rule: |
Source: |
Classification label: |
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
||
Source: |
ELF static info symbol of dropped file: |
Source: |
File written: |
Jump to dropped file | ||
Source: |
File written: |
Jump to dropped file |
Source: |
Directory: |
Jump to behavior | ||
Source: |
Directory: |
Jump to behavior | ||
Source: |
Directory: |
Jump to behavior | ||
Source: |
Directory: |
Jump to behavior | ||
Source: |
Directory: |
Jump to behavior |
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior | ||
Source: |
Queries kernel information via 'uname': |
Jump to behavior |
Source: |
Arguments: |
Jump to behavior |
Stealing of Sensitive Information |
---|
Source: |
File source: |
||
Source: |
File source: |
Source: |
File source: |
||
Source: |
File source: |
Remote Access Functionality |
---|
Source: |
File source: |
||
Source: |
File source: |
Source: |
File source: |
||
Source: |
File source: |
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
35.244.181.201 | prod.balrog.prod.cloudops.mozgcp.net | United States | 15169 | GOOGLEUS | false | |
44.231.103.117 | unknown | United States | 16509 | AMAZON-02US | false | |
52.25.208.227 | unknown | United States | 16509 | AMAZON-02US | false | |
31.214.243.29 | unknown | Germany | 197071 | ACTIVE-SERVERSactive-serverscomDE | false | |
34.160.144.191 | prod.content-signature-chains.prod.webservices.mozgcp.net | United States | 2686 | ATGS-MMD-ASUS | false | |
109.202.202.202 | unknown | Switzerland | 13030 | INIT7CH | false | |
91.189.91.43 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false | |
34.120.208.123 | prod.ingestion-edge.prod.dataops.mozgcp.net | United States | 15169 | GOOGLEUS | false | |
34.111.73.144 | fennec-catalog-cdn.prod.mozaws.net | United States | 15169 | GOOGLEUS | false | |
91.189.91.42 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false | |
35.241.9.150 | firefox.settings.services.mozilla.com | United States | 15169 | GOOGLEUS | false |
Name | IP | Active |
---|---|---|
star-mini.c10r.facebook.com | 157.240.20.35 | true |
fennec-catalog-cdn.prod.mozaws.net | 34.111.73.144 | true |
prod.balrog.prod.cloudops.mozgcp.net | 35.244.181.201 | true |
twitter.com | 104.244.42.129 | true |
youtube-ui.l.google.com | 142.250.185.142 | true |
autopush.prod.mozaws.net | 52.10.254.200 | true |
reddit.map.fastly.net | 151.101.65.140 | true |
firefox.settings.services.mozilla.com | 35.241.9.150 | true |
prod.ingestion-edge.prod.dataops.mozgcp.net | 34.120.208.123 | true |
dyna.wikimedia.org | 91.198.174.192 | true |
www.example.com | 93.184.216.34 | true |
prod.content-signature-chains.prod.webservices.mozgcp.net | 34.160.144.191 | true |
www.facebook.com | unknown | unknown |
www.reddit.com | unknown | unknown |
content-signature-2.cdn.mozilla.net | unknown | unknown |
push.services.mozilla.com | unknown | unknown |
www.youtube.com | unknown | unknown |
www.wikipedia.org | unknown | unknown |
firefox-settings-attachments.cdn.mozilla.net | unknown | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
|
high | |
true |
|
unknown | |
false |
|
high | |
false |
|
high | |
false |
|
high | |
false |
|
high |