4.0
中危
DACN
0.14
FACILE
1.00
IMCLNet
0.55
MFGraph
0.00
反病毒引擎
| 查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
|---|---|---|---|
| Alibaba | None | 20190527 | 0.3.0.5 |
| Avast | Win32:Agent-ASIP [Trj] | 20191001 | 18.4.3895.0 |
| Baidu | Win32.Trojan-Downloader.Small.ck | 20190318 | 1.0.0.2 |
| CrowdStrike | win/malicious_confidence_100% (D) | 20190702 | 1.0 |
| Kingsoft | None | 20191001 | 2013.8.14.323 |
| McAfee | Downloader-FVF!18EAA61AAF04 | 20191001 | 6.0.6.653 |
| Tencent | None | 20191001 | 1.0.0.1 |
静态指标
检查进程是否被调试器调试
(2 个事件)
| Time & API | Arguments | Status | Return | Repeated |
|---|---|---|---|---|
|
1727545298.625375 IsDebuggerPresent |
failed | 0 | 0 | |
|
1727545299.109375 IsDebuggerPresent |
failed | 0 | 0 |
可执行文件包含未知的 PE 段名称,可能指示打包器(可能是误报)
(1 个事件)
| section | .imports |
动态指标
提取了一个或多个潜在有趣的缓冲区,这些缓冲区通常包含注入的代码、配置数据等。
分配可读-可写-可执行内存(通常用于自解压)
(6 个事件)
在文件系统上创建可执行文件
(1 个事件)
| file | C:\Users\Administrator\AppData\Local\Temp\hhcbrnaff.exe |
投放一个二进制文件并执行它
(1 个事件)
| file | C:\Users\Administrator\AppData\Local\Temp\hhcbrnaff.exe |
将可执行文件投放到用户的 AppData 文件夹
(1 个事件)
| file | C:\Users\Administrator\AppData\Local\Temp\hhcbrnaff.exe |
一个进程创建了一个隐藏窗口
(1 个事件)
检查适配器地址以检测虚拟网络接口
(50 out of 3320 个事件)
该二进制文件可能包含加密或压缩数据,表明使用了打包工具
(2 个事件)
| section | {'name': 'UPX1', 'virtual_address': '0x00007000', 'virtual_size': '0x00002000', 'size_of_data': '0x00002000', 'entropy': 7.139039520942322} | entropy | 7.139039520942322 | description | 发现高熵的节 | |||||||||
| entropy | 0.2077922077922078 | description | 此PE文件的整体熵值较高 | |||||||||||
可执行文件使用UPX压缩
(2 个事件)
| section | UPX0 | description | 节名称指示UPX | ||||||
| section | UPX1 | description | 节名称指示UPX | ||||||
网络通信
一个或多个缓冲区包含嵌入的PE文件
(1 个事件)
| buffer | Buffer with sha1: 0d22af1d0d72870672eb36e666f9a5eb8cd9dd43 |
与未执行 DNS 查询的主机进行通信
(2 个事件)
| host | 114.114.114.114 | |||
| host | 8.8.8.8 | |||
文件已被 VirusTotal 上 54 个反病毒引擎识别为恶意
(50 out of 54 个事件)
| ALYac | Gen:Variant.Ulise.44925 |
| APEX | Malicious |
| AVG | Win32:Agent-ASIP [Trj] |
| Acronis | suspicious |
| Ad-Aware | Gen:Variant.Ulise.44925 |
| AhnLab-V3 | Trojan/Win32.Fakon.R257890 |
| Antiy-AVL | Trojan/Win32.AGeneric |
| Arcabit | Trojan.Ulise.DAF7D |
| Avast | Win32:Agent-ASIP [Trj] |
| Avira | TR/Spy.Zbot.amoan |
| Baidu | Win32.Trojan-Downloader.Small.ck |
| BitDefender | Gen:Variant.Ulise.44925 |
| CAT-QuickHeal | TrojanDownloader.Upatre |
| ClamAV | Win.Downloader.Upatre-5744087-0 |
| Comodo | Packed.Win32.MUPX.Gen@24tbus |
| CrowdStrike | win/malicious_confidence_100% (D) |
| Cybereason | malicious.aaf040 |
| Cylance | Unsafe |
| Cyren | W32/S-348f8679!Eldorado |
| DrWeb | Trojan.DownLoad3.28161 |
| ESET-NOD32 | Win32/TrojanDownloader.Small.AAB |
| Emsisoft | Gen:Variant.Ulise.44925 (B) |
| Endgame | malicious (high confidence) |
| F-Prot | W32/S-348f8679!Eldorado |
| F-Secure | Trojan.TR/Spy.Zbot.amoan |
| FireEye | Generic.mg.18eaa61aaf040667 |
| Fortinet | W32/Agent.AEJB!tr |
| GData | Gen:Variant.Ulise.44925 |
| Ikarus | Trojan-PWS.Win32.Fareit |
| Invincea | heuristic |
| Jiangmin | Trojan/Agent.hnzm |
| K7AntiVirus | Trojan ( 0040f6941 ) |
| K7GW | Trojan ( 0040f6941 ) |
| Kaspersky | HEUR:Trojan.Win32.Generic |
| MAX | malware (ai score=82) |
| Malwarebytes | Trojan.Zbot |
| McAfee | Downloader-FVF!18EAA61AAF04 |
| McAfee-GW-Edition | BehavesLike.Win32.Cutwail.qt |
| MicroWorld-eScan | Gen:Variant.Ulise.44925 |
| Microsoft | TrojanDownloader:Win32/Upatre.A |
| NANO-Antivirus | Trojan.Win32.DownLoad3.clryhy |
| Panda | Trj/Genetic.gen |
| Qihoo-360 | HEUR/QVM19.1.4239.Malware.Gen |
| Rising | Trojan.Crypto!1.9E08 (CLASSIC) |
| SUPERAntiSpyware | Trojan.Agent/Gen-Zbot |
| SentinelOne | DFI - Malicious PE |
| Sophos | Troj/Zbot-GTA |
| Symantec | ML.Attribute.HighConfidence |
| Trapmine | malicious.high.ml.score |
| VBA32 | BScope.Trojan.Download |
连接到不再响应请求的 IP 地址(合法服务通常会保持运行)
(3 个事件)
| dead_host | 156.254.147.137:443 |
| dead_host | 124.225.27.62:80 |
| dead_host | 124.225.27.61:80 |
二进制图像
288x288
224x224
192x192
160x160
128x128
96x96
64x64
32x32
运行截图
暂无运行截图
该样本运行过程中未生成截图
PE Compile Time
2013-10-28 20:23:24
PE Imphash
81570638ac265a5d003f10d4aed45e1d
Sections
| Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
|---|---|---|---|---|
| UPX0 | 0x00001000 | 0x00006000 | 0x00006000 | 3.2379371706857465 |
| UPX1 | 0x00007000 | 0x00002000 | 0x00002000 | 7.139039520942322 |
| .rsrc | 0x00009000 | 0x00002000 | 0x00001800 | 4.6122840734911525 |
| .imports | 0x0000b000 | 0x00001000 | 0x00000200 | 3.5346881655003766 |
Resources
| Name | Offset | Size | Language | Sub-language | File type |
|---|---|---|---|---|---|
| RT_ICON | 0x0000917c | 0x00000ea8 | LANG_NEUTRAL | SUBLANG_NEUTRAL | None |
| RT_DIALOG | 0x00006020 | 0x000000e8 | LANG_NEUTRAL | SUBLANG_NEUTRAL | None |
| RT_GROUP_ICON | 0x0000a028 | 0x00000014 | LANG_NEUTRAL | SUBLANG_NEUTRAL | None |
| RT_VERSION | 0x0000a040 | 0x00000324 | LANG_NEUTRAL | SUBLANG_NEUTRAL | None |
| RT_MANIFEST | 0x0000a368 | 0x00000193 | LANG_NEUTRAL | SUBLANG_NEUTRAL | None |
Imports
Library KERNEL32.DLL:
• 0x4040b0 ExitProcess
• 0x4040b4 FreeLibrary
• 0x4040b8 GetModuleHandleA
• 0x4040bc GetProcAddress
• 0x4040c0 HeapCreate
• 0x4040c4 HeapAlloc
Library Msacm32.dll:
• 0x4041fc acmStreamOpen
Library user32.dll:
• 0x40414c LoadIconA
• 0x404150 LoadCursorA
• 0x404154 RegisterClassA
• 0x404158 CreateWindowExA
• 0x40415c GetMessageA
• 0x404160 DispatchMessageA
• 0x404164 DefWindowProcA
• 0x404168 PostQuitMessage
Library Winmm.dll:
• 0x40421c mciSendStringA
L!This program cannot be run in DOS mode.
.imports
f?MZue
W<f:PEuYUBx
D$(D$,
1P>?GFFP
open waveaudio
TranslateMessage
LoadLibraryExA
user32.dll
ExitProcess
FreeLibrary
GetModuleHandleA
GetProcAddress
HeapCreate
HeapAlloc
acmStreamOpen
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
GetMessageA
DispatchMessageA
DefWindowProcA
PostQuitMessage
mciSendStringA
`.data
.idata
open waveaudio
TranslateMessage/
LoadLibryExA
user32.dllR'
f#|8on6
@&dIdI&&
gAL2$2$e*#LI
{C$L$L2M2
GHEIDdYJ/
C?+++eCGG&_qc
G|8Qq0X
igG?l3
#o5_;|
;YY)O^
Aaswk=
p#6q?XlA8}?z
u!C_KwGM
]7Fo-"8B
;,Y*WG
!?[0`w
doMm_9WB
0XM'31!I9;
#_!k?K
_tCAgCV3%CYu
B@&dKe;;
bEK>33
@r]w;
%kK! Km3f@qG:]w
Ig G}A
\!FA`W=
U(5\tN
U(Yh[7
a~uk56
R#AkZ64M
m4ol[;
4pA|6M
TuxaxP
]k-%ZG{
/PMQIM
[X(Q=i
PjU*)Fvy
&mV-t6
10`n[_b
T8i-[x
_ProcessFree
GetModuleHand
*Addr.HeapC
[A1acmSt mOAfk
Cursor
sLrCla^
bf,oM6Qui3
2mc$hsiSd/gCRPE
<WnR&%JK
-,`.dat!`aM
n.i(@KS6"'.rK`cPS&'
XPTPSWXaD$j
#######
###;KK>
26;2+##########
#########
#####+bEXL
+######+
#####3
######3#
PD[>J22Ib|tLx63
#######3#>>
vDDP>2
########3+ug
DW[[FvV####
########3#J~~3#5gJIk#
3333333333+g +zT
##++++######
3333333333#J%Tz+33#3333######
33333333333+
#3#############
33333333333@II#3#3###########
33333333333@+333##3#########
33333333@?a
+23333##3#######
332@j+23333333#######
j@33333333#######
2+jj23333333333####
$2+I@33333333333##
$$$$$2+@2333333333#
$$$$$$$
al2333333333
$$$233333333
C&SCCCSCS&&&&
&&&&$$
7:::::::****************ss****@$$$$$
788888881;111n;;;11p;11111111;
))))))
o,,,,,,,L6,6Lr66rq6,,,,,,,E
)f/HHHH/
8(((((,Lx|>>Eq6,(,((,EM&/-999N/
K((((((XmV#R?DlV((((((EMC/N9<<<<<
,444444X|JJVT
DRmXF4444F4VMC-9<UUU
(444444X3?
DPIDP#F04440tM
4000000y2WIWRIuRI
0000050
5y{kkJ0? D~`f9f
0%%%%%%_
3^%%%%%y`f\f#
%%%%%%%%^_a%G_a%%G=%%%%%%^`f\f#
%%%%%%%%%BB%%%BB%GG%BB%GGGGG%G`f
G.......'''''''''''''''''''''.
-----------------d-)/
&&&&$$$&
$$$$$$$
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
KERNEL32.DLL
Msacm32.dll
user32.dll
Winmm.dll
ExitProcess
GetProcAddress
LoadLibraryA
VirtualProtect
acmStreamOpen
LoadIconA
mciSendStringA
KERNEL32.DLL
ExitProcess
FreeLibrary
GetModuleHandleA
GetProcAddress
HeapCreate
HeapAlloc
Msacm32.dll
acmStreamOpen
user32.dll
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
GetMessageA
DispatchMessageA
DefWindowProcA
PostQuitMessage
Winmm.dll
mciSendStringA
�A�b�o�u�t�
M�S� �S�a�n�s� �S�e�r�i�f�
V�S�_�V�E�R�S�I�O�N�_�I�N�F�O�
S�t�r�i�n�g�F�i�l�e�I�n�f�o�
0�8�0�0�0�0�2�5�
C�o�m�m�e�n�t�s�
C�o�m�p�a�n�y�N�a�m�e�
M�S� �C�o�r�p�o�r�a�t�i�o�n�
F�i�l�e�D�e�s�c�r�s�i�p�t�i�o�n�
n�o�t�e�.�e�x�e�
F�i�l�e�V�e�r�s�i�o�n�
2�.�0�.�0�.�2�
I�n�t�e�r�n�a�l�N�a�m�e�
n�o�t�e�.�e�x�e�
L�e�g�a�l�C�o�p�y�r�i�g�h�t�
C�o�p�y�r�i�g�h�t� �(�C�)� �2�0�0�5�
L�e�g�a�l�T�r�a�d�e�m�a�r�k�s�
O�r�i�g�i�n�a�l�F�i�l�e�n�a�m�e�
n�o�t�e�.�e�x�e�
P�r�i�v�a�t�e�B�u�i�l�d�
P�r�o�d�u�c�t�N�a�m�e�
P�r�o�d�u�c�t�V�e�r�s�i�o�n�
3�.�0�.�0�.�3�
S�p�e�c�i�a�l�B�u�i�l�d�
V�a�r�F�i�l�e�I�n�f�o�
T�r�a�n�s�l�a�t�i�o�n�
C�:�\�D�O�C�U�M�E�~�1�\�7�B�5�C�~�1�\�L�O�C�A�L�S�~�1�\�T�e�m�p�\�R�a�r�$�E�X�0�0�.�7�9�7�\�2�0�1�3�1�0�2�8�1�2�3�8�7�4�5�1�2�.�e�x�e�
C�:�\�y�H�Y�V�p�V�P�J�.�e�x�e�
C�:�\�T�3�Q�Z�l�L�_�W�.�e�x�e�
C�:�\�4�Y�r�X�D�c�0�3�.�e�x�e�
C�:�\�0�z�q�w�r�F�4�p�.�e�x�e�
C�:�\�S�B�x�m�H�r�r�Q�.�e�x�e�
C�:�\�O�_�1�J�o�W�H�K�.�e�x�e�
C�:�\�V�4�d�h�Z�u�h�h�.�e�x�e�
C�:�\�x�U�H�9�u�o�q�B�.�e�x�e�
C�:�\�W�y�E�R�J�p�s�4�.�e�x�e�
C�:�\�a�q�l�M�X�X�N�u�.�e�x�e�
C�:�\�_�5�N�4�7�d�L�7�.�e�x�e�
C�:�\�7�t�8�M�L�n�9�S�.�e�x�e�
C�:�\�B�Q�h�n�o�y�d�G�.�e�x�e�
C�:�\�p�4�N�X�5�E�Y�G�.�e�x�e�
C�:�\�6�g�d�h�C�q�j�r�.�e�x�e�
C�:�\�Q�1�t�c�J�M�l�S�.�e�x�e�
C�:�\�W�I�x�y�l�d�E�8�.�e�x�e�
C�:�\�s�H�k�7�B�W�P�D�.�e�x�e�
C�:�\�w�i�C�T�H�v�5�Z�.�e�x�e�
C�:�\�l�9�g�M�S�P�2�j�.�e�x�e�
C�:�\�I�9�u�U�8�H�u�e�.�e�x�e�
C�:�\�h�w�F�_�6�Q�o�5�.�e�x�e�
C�:�\�b�S�h�9�U�l�P�J�.�e�x�e�
C�:�\�a�5�h�z�_�n�s�E�.�e�x�e�
C�:�\�Y�E�f�w�x�W�F�W�.�e�x�e�
C�:�\�p�R�1�W�u�w�8�H�.�e�x�e�
C�:�\�_�l�5�7�L�4�G�c�.�e�x�e�
C�:�\�c�H�a�M�P�b�t�s�.�e�x�e�
C�:�\�Y�F�z�m�N�s�S�d�.�e�x�e�
C�:�\�n�F�r�M�R�X�U�v�.�e�x�e�
C�:�\�2�5�3�a�7�a�d�5�d�4�6�9�9�3�4�c�1�e�4�c�5�2�1�9�0�4�d�f�a�0�a�1�a�c�5�5�c�f�6�8�8�7�d�7�a�5�c�3�9�2�5�f�8�7�d�9�d�5�b�c�a�0�8�8�
C�:�\�o�8�I�P�2�_�H�7�.�e�x�e�
C�:�\�s�K�I�_�1�Q�R�r�.�e�x�e�
C�:�\�Q�v�F�z�M�1�H�t�.�e�x�e�
C�:�\�9�6�f�d�9�5�3�8�c�e�4�e�7�f�7�9�a�2�f�4�7�3�b�d�d�4�5�7�1�e�2�0�7�d�a�0�b�1�9�0�c�6�d�d�8�d�c�5�1�0�1�6�f�b�7�4�8�f�c�b�8�2�2�7�
C�:�\�1�d�9�2�b�8�f�c�5�4�0�b�e�4�1�3�9�a�6�6�c�8�7�3�7�d�e�1�5�1�2�5�a�a�5�4�a�a�9�7�b�1�6�1�c�c�b�c�b�3�b�1�7�7�f�3�2�3�c�6�c�8�8�a�
C�:�\�o�n�O�W�s�T�N�S�.�e�x�e�
C�:�\�8�0�f�1�c�c�c�f�8�3�a�d�1�f�e�8�0�e�6�5�c�1�0�b�3�0�1�2�1�6�5�0�e�5�f�4�8�a�1�e�2�e�5�4�d�6�1�0�7�8�d�e�4�4�b�5�3�c�e�6�c�9�c�e�
C�:�\�P�p�y�J�3�P�k�H�.�e�x�e�
C�:�\�7�e�6�a�a�f�c�e�5�9�7�5�6�0�0�2�a�8�e�2�8�a�a�3�1�3�7�8�6�a�a�b�5�9�6�1�e�0�f�4�c�8�4�3�3�1�1�9�7�1�7�2�c�f�f�5�4�7�1�9�e�8�d�3�
C�:�\�4�e�e�2�f�f�5�4�b�4�9�9�a�9�a�8�4�c�4�1�9�3�6�b�9�e�8�1�b�4�5�9�9�c�4�c�b�0�d�f�e�7�c�5�9�e�1�9�8�2�6�b�5�d�c�c�b�8�2�d�0�3�3�1�
C�:�\�5�3�5�e�a�b�b�0�9�e�4�0�5�d�2�5�c�0�b�9�e�6�4�c�b�1�9�5�b�2�5�2�6�3�3�8�f�b�6�2�e�b�f�7�4�c�d�4�e�e�0�b�d�9�2�a�6�f�9�4�8�c�3�e�
C�:�\�e�8�1�5�7�c�9�f�a�2�4�7�c�a�2�f�6�2�7�b�e�c�f�6�a�b�1�5�d�e�a�8�1�0�c�2�2�0�8�4�7�5�6�0�0�8�c�9�3�7�0�3�f�2�2�1�b�3�a�a�f�3�5�e�
C�:�\�3�2�4�1�8�1�e�d�b�a�d�8�c�e�7�2�d�d�2�5�0�7�2�f�c�4�4�9�8�8�f�f�2�3�6�c�d�1�8�3�6�f�d�5�8�0�1�8�f�8�b�a�d�9�7�8�2�0�6�0�3�0�3�b�
C�:�\�b�3�0�7�7�c�a�0�1�5�1�d�f�4�b�0�9�a�8�3�7�3�3�d�b�7�a�1�5�e�7�5�9�2�a�9�0�9�a�2�3�5�b�2�a�1�c�0�4�f�d�a�7�7�a�d�e�9�f�c�c�5�f�8�
C�:�\�i�b�p�S�3�_�6�8�.�e�x�e�
C�:�\�U�s�e�r�s�\�L�i�s�a�\�D�e�s�k�t�o�p�\�u�N�s�Z�i�F�6�I�.�e�x�e�
C�:�\�8�f�7�5�3�7�9�1�3�1�e�8�7�c�1�6�3�7�8�8�2�3�2�9�9�e�b�5�c�e�f�8�7�c�9�3�6�c�a�7�c�5�a�e�b�e�7�a�c�6�8�e�b�0�a�9�9�e�4�5�e�4�1�e�
C�:�\�D�o�c�u�m�e�n�t�s� �a�n�d� �S�e�t�t�i�n�g�s�\�A�d�m�i�n�i�s�t�r�a�t�o�r�\�D�e�s�k�t�o�p�\�l�s�I�V�e�p�Y�1�.�e�x�e�
C�:�\�R�i�n�Z�S�R�3�O�.�e�x�e�
C�:�\�4�c�4�8�c�b�b�a�9�2�0�b�3�3�f�d�2�e�9�5�3�8�e�0�0�9�a�7�3�3�4�d�b�9�9�e�7�0�d�2�4�3�6�a�8�2�3�2�4�7�7�3�4�e�0�0�4�0�b�1�6�a�8�5�
C�:�\�6�0�c�8�c�7�f�2�4�f�b�f�c�5�b�c�d�3�4�9�b�d�9�b�f�5�f�b�8�7�2�1�7�2�b�1�9�6�2�6�5�b�2�e�7�a�b�0�b�c�0�e�7�9�f�f�7�0�c�6�6�6�c�f�
C�:�\�0�c�6�7�5�f�c�2�a�b�7�6�0�9�d�d�5�7�6�8�e�6�b�2�2�a�c�8�e�7�7�f�0�b�b�b�0�0�e�4�9�6�d�9�7�6�2�8�9�6�1�0�9�5�2�0�5�f�2�e�e�7�e�7�
C�:�\�a�3�3�c�a�4�8�c�f�7�5�5�8�d�f�2�a�1�f�1�5�9�6�2�b�b�a�b�a�e�1�0�7�f�e�d�0�1�e�8�1�d�6�0�a�8�9�e�5�4�4�5�0�c�b�1�6�5�f�7�1�a�4�d�
C�:�\�0�a�e�8�8�7�2�8�2�5�2�3�b�0�5�a�6�8�1�7�2�d�a�6�6�8�2�d�2�5�8�0�c�a�d�1�a�c�9�8�6�5�5�b�7�3�b�d�1�c�1�7�c�a�d�4�a�6�5�1�c�e�1�a�
C�:�\�a�9�0�b�d�3�d�a�4�7�1�a�e�9�3�4�d�6�a�c�1�2�6�0�9�f�c�e�c�f�9�3�7�d�8�6�4�f�6�d�1�b�2�9�6�3�2�3�c�d�2�8�7�9�6�5�7�8�7�7�0�5�5�c�
C�:�\�c�8�0�5�9�9�6�7�9�c�c�2�8�1�f�f�4�1�3�3�3�4�a�8�b�a�1�9�9�f�a�3�d�1�5�d�6�f�e�3�6�8�3�5�e�1�f�6�a�2�d�3�d�a�5�9�3�5�8�d�d�a�a�1�
C�:�\�b�a�1�f�3�3�2�3�e�2�a�e�f�6�d�f�7�e�0�1�1�a�7�b�4�7�3�8�0�5�a�4�1�5�e�2�8�3�5�5�7�3�a�9�a�5�5�4�2�2�b�a�f�a�a�4�c�f�6�7�8�c�c�e�
C�:�\�c�9�4�b�d�0�d�c�a�4�f�4�c�7�2�6�b�9�f�a�d�a�1�1�5�6�f�6�3�2�9�9�c�c�f�0�b�3�c�a�6�d�e�5�e�8�e�b�d�b�0�c�f�d�d�c�f�7�d�4�f�f�f�5�
c�:�\�a�n�a�l�y�s�e�\�1�5�5�4�0�1�0�9�8�0�.�4�7�3�5�8�4�7�_�e�e�3�4�2�b�0�6�-�7�8�f�0�-�4�2�6�b�-�a�c�3�5�-�7�d�1�9�7�7�2�4�4�3�6�f�
C�:�\�U�s�e�r�s�\�V�i�r�t�u�a�l�\�A�p�p�D�a�t�a�\�L�o�c�a�l�\�T�e�m�p�\�8�9�e�c�8�0�2�2�8�b�9�1�d�d�3�7�c�d�5�2�c�5�f�1�6�7�a�2�2�2�a�e�9�4�5�3�9�2�f�e�7�4�5�e�c�6�f�b�2�e�3�9�6�7�5�3�f�8�c�9�b�2�6�9�.�e�x�e�
C�:�\�3�4�d�e�d�f�e�a�a�0�8�b�c�f�e�2�4�7�9�c�e�4�2�a�a�1�b�4�f�8�2�2�6�2�c�d�a�c�e�4�9�f�7�d�8�3�d�3�a�f�9�1�7�7�3�4�d�1�6�a�2�f�4�b�
C�:�\�1�8�2�7�b�a�1�5�2�8�b�5�a�2�2�1�7�8�f�5�1�a�7�5�a�7�7�1�f�7�3�3�1�4�3�e�9�2�f�a�b�9�c�e�5�d�b�f�9�f�2�8�d�6�0�0�e�3�6�2�b�5�3�0�
C�:�\�0�d�6�2�1�0�e�e�2�c�7�8�d�0�3�2�e�4�6�1�2�4�b�d�4�c�3�4�8�3�0�9�1�a�3�8�8�7�3�8�d�8�6�f�3�5�0�0�5�2�6�3�3�3�4�1�3�9�6�e�4�0�8�0�
C�:�\�U�s�e�r�s�\�L�i�s�a�\�D�e�s�k�t�o�p�\�y�B�u�P�Z�o�k�L�.�e�x�e�
C�:�\�L�j�5�V�S�O�l�_�.�e�x�e�
C�:�\�c�3�0�6�6�6�d�3�7�8�f�c�5�f�7�e�6�9�a�d�e�4�d�d�8�b�f�b�c�f�8�f�5�e�2�4�d�3�a�3�f�5�f�1�8�a�6�6�b�1�9�9�9�e�c�1�7�4�a�0�8�f�b�4�
C�:�\�U�s�e�r�s�\�P�e�t�r�a�\�A�p�p�D�a�t�a�\�L�o�c�a�l�\�T�e�m�p�\�h�h�c�b�r�n�a�f�f�.�p�e�3�2�
C�:�\�U�s�e�r�s�\�L�i�s�a�\�D�e�s�k�t�o�p�\�K�U�D�P�b�S�y�C�.�e�x�e�
C�:�\�Z�J�O�z�V�q�2�h�.�e�x�e�
C�:�\�D�o�c�u�m�e�n�t�s� �a�n�d� �S�e�t�t�i�n�g�s�\�A�d�m�i�n�i�s�t�r�a�t�o�r�\�D�e�s�k�t�o�p�\�v�C�3�m�i�a�V�8�.�e�x�e�
C�:�\�m�m�N�9�O�p�h�C�.�e�x�e�
C�:�\�7�f�6�0�a�b�3�e�d�c�9�7�3�1�6�b�b�9�2�7�e�a�1�6�9�4�5�a�e�5�5�6�c�e�e�7�c�6�0�4�7�8�5�5�6�a�c�7�3�e�a�a�3�e�b�c�4�2�c�6�7�9�9�3�
C�:�\�7�7�7�7�6�2�d�f�3�5�f�2�6�4�6�b�8�7�1�c�2�1�b�4�9�d�e�5�2�0�8�c�7�f�6�e�3�2�d�e�5�c�9�8�2�f�c�e�1�5�b�d�4�5�b�8�d�4�7�f�3�3�9�9�
C�:�\�z�1�R�u�C�P�b�e�.�e�x�e�
C�:�\�9�8�3�5�a�0�a�c�3�e�c�9�c�1�3�f�2�4�e�5�7�5�d�6�e�2�1�6�5�4�4�2�b�e�6�c�5�9�7�6�5�0�a�2�7�2�c�7�4�5�a�c�f�8�5�c�6�0�0�7�c�3�7�4�
C�:�\�c�5�3�2�4�a�7�1�a�1�b�f�3�e�d�2�3�7�2�9�d�d�d�9�a�e�0�a�3�5�b�7�e�6�3�5�4�0�4�9�e�f�9�8�5�b�b�6�8�5�9�3�5�f�3�9�5�c�5�9�d�9�d�3�
C�:�\�f�f�b�8�9�8�0�4�4�a�8�3�c�a�b�1�5�2�c�5�2�2�b�a�f�7�e�0�7�0�2�e�5�7�7�c�8�b�e�2�a�5�1�5�6�7�e�a�e�9�a�4�5�0�3�a�3�8�5�3�9�d�9�9�
C�:�\�U�s�e�r�s�\�L�i�s�a�\�D�e�s�k�t�o�p�\�e�7�r�d�1�A�R�A�.�e�x�e�
C�:�\�f�0�2�2�7�b�3�6�9�c�a�e�9�0�9�0�7�7�b�1�0�9�c�f�8�2�1�f�a�8�c�4�c�9�6�b�e�c�9�8�f�c�4�9�7�d�4�3�4�6�6�e�4�d�e�a�6�4�2�6�e�2�e�6�
C�:�\�2�8�2�a�3�e�0�f�8�4�b�5�1�2�1�8�e�7�e�c�2�8�7�3�9�d�7�a�c�c�0�8�e�2�3�2�5�a�5�8�2�3�f�a�c�d�e�6�b�6�a�6�3�a�7�4�2�f�8�e�c�f�3�3�
C�:�\�3�b�3�9�f�3�e�3�5�4�8�c�8�b�d�a�8�3�3�8�6�3�2�5�f�4�b�e�f�1�e�2�9�f�a�4�9�2�f�1�f�8�4�2�e�c�c�a�4�1�4�f�2�2�a�3�a�f�8�6�5�a�8�8�
C�:�\�D�o�c�u�m�e�n�t�s� �a�n�d� �S�e�t�t�i�n�g�s�\�l�u�s�e�r�\�D�e�s�k�t�o�p�\�p�6�u�I�6�Z�z�9�.�e�x�e�
C�:�\�y�i�d�K�2�w�e�r�.�e�x�e�
C�:�\�a�4�0�d�e�7�f�2�3�6�6�e�e�0�d�c�6�f�5�e�a�4�b�2�b�5�6�6�f�d�7�6�4�f�2�6�5�f�f�7�6�7�e�b�6�3�0�2�a�d�9�e�a�b�e�b�e�2�4�e�a�b�8�2�
C�:�\�D�o�c�u�m�e�n�t�s� �a�n�d� �S�e�t�t�i�n�g�s�\�A�d�m�i�n�i�s�t�r�a�t�o�r�\�D�e�s�k�t�o�p�\�y�A�v�M�5�Z�9�d�.�e�x�e�
C�:�\�6�G�a�X�k�b�u�z�.�e�x�e�
C�:�\�a�f�2�d�6�d�9�4�8�f�4�7�f�5�e�2�7�5�3�0�1�f�7�1�9�6�2�3�b�c�6�d�e�4�6�b�1�2�a�f�6�6�3�9�7�0�2�1�4�2�9�3�9�9�6�2�8�f�9�4�e�d�4�0�
C�:�\�a�6�a�8�3�c�4�1�f�8�2�a�9�4�3�5�9�c�2�3�f�0�e�4�4�e�7�0�f�6�c�1�4�6�5�2�1�4�9�5�f�f�9�6�e�9�f�6�e�8�d�7�f�5�6�f�3�b�c�6�4�f�7�a�
C�:�\�U�s�e�r�s�\�V�i�r�t�u�a�l�\�A�p�p�D�a�t�a�\�L�o�c�a�l�\�T�e�m�p�\�d�c�b�f�8�f�2�7�c�8�0�0�c�b�1�d�8�a�2�2�3�c�e�3�8�8�e�7�5�5�5�3�7�7�f�c�8�3�0�f�0�5�f�0�b�d�3�3�c�3�2�6�7�f�b�f�9�e�0�b�b�f�0�8�.�e�x�e�
C�:�\�1�c�2�7�1�b�6�c�8�8�7�0�e�f�1�9�c�7�0�e�0�1�f�f�0�3�e�c�b�9�d�0�1�1�9�7�b�5�d�6�2�9�b�a�5�d�a�7�4�1�3�4�7�2�7�3�6�c�d�8�c�3�a�9�
C�:�\�f�7�4�b�e�a�5�c�d�4�b�5�1�5�5�9�4�7�e�3�c�3�2�3�b�7�5�c�f�3�f�8�b�0�6�e�e�1�1�5�6�0�a�a�b�6�0�3�7�7�9�8�e�d�5�4�0�5�d�1�5�2�a�b�
C�:�\�H�M�O�P�B�F�n�K�.�e�x�e�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�i�m�p�o�r�t�a�n�t�_�d�o�c�u�m�e�n�t�.�e�x�e�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�i�m�p�o�r�t�a�n�t�_�d�o�c�u�m�e�n�t�.�e�x�e�
C�:�\�8�9�d�2�a�8�c�1�a�6�0�f�4�9�b�e�0�b�8�c�8�2�8�4�9�0�d�c�e�7�a�7�7�4�b�e�a�a�0�7�5�6�6�e�6�1�a�3�1�7�3�1�5�b�c�f�7�e�0�1�c�c�2�3�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�f�a�c�t�u�r�a�.�e�x�e�
C�:�\�e�1�4�6�3�5�0�b�d�e�5�4�a�d�c�b�6�1�3�3�d�f�1�a�4�b�c�7�5�c�3�9�a�4�9�7�3�2�b�4�9�f�f�1�f�d�1�4�d�6�9�1�b�b�9�4�2�d�e�3�0�c�2�e�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�i�n�v�o�i�c�e�.�e�x�e�
C�:�\�4�6�4�2�d�a�b�e�9�1�a�e�b�c�c�1�9�4�6�7�c�e�0�b�3�f�e�a�f�3�e�f�a�e�4�3�8�3�1�d�8�5�f�7�a�1�6�8�d�a�3�b�a�4�8�e�8�0�b�a�9�c�7�3�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�i�m�p�o�r�t�a�n�t�_�d�o�c�u�m�e�n�t�.�e�x�e�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�i�n�v�o�i�c�e�.�e�x�e�
C�:�\�3�c�0�7�6�a�d�1�4�8�4�0�b�2�9�7�9�2�5�6�b�6�5�a�2�0�8�5�7�a�c�8�0�7�8�e�1�a�d�6�1�7�e�1�1�d�d�e�6�8�2�6�2�d�b�7�3�0�2�b�d�7�6�f�
C�:�\�0�7�d�7�5�6�a�9�0�8�f�3�9�5�6�7�8�5�8�b�c�9�9�2�c�2�6�e�0�0�0�c�2�c�c�8�d�8�9�f�f�e�9�9�c�9�e�0�4�b�b�7�3�e�d�5�0�b�0�c�0�f�6�2�
C�:�\�D�o�c�u�m�e�n�t�s� �a�n�d� �S�e�t�t�i�n�g�s�\�A�d�m�i�n�i�s�t�r�a�t�o�r�\�D�e�s�k�t�o�p�\�x�C�f�e�0�7�a�5�.�e�x�e�
C�:�\�9�1�5�d�1�a�f�c�f�6�1�c�b�d�8�d�5�d�6�5�8�5�3�1�4�9�7�1�6�4�a�e�d�1�5�7�3�a�7�5�d�c�4�6�3�8�d�e�0�a�6�4�b�5�e�f�4�d�8�0�3�1�3�1�
C�:�\�U�s�e�r�s�\�P�e�t�r�a�\�A�p�p�D�a�t�a�\�L�o�c�a�l�\�T�e�m�p�\�h�h�c�b�r�n�a�f�f�.�p�e�3�2�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�i�m�p�o�r�t�a�n�t�_�d�o�c�u�m�e�n�t�.�e�x�e�
C�:�\�7�7�2�8�1�d�5�3�e�1�8�1�a�8�d�6�7�6�c�a�1�6�2�2�d�7�a�4�b�9�f�1�0�9�a�b�9�c�c�7�f�0�4�b�4�7�d�3�8�e�4�e�6�5�2�b�d�c�e�3�3�b�1�1�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�s�a�m�p�l�e�.�e�x�e�
C�:�\�9�f�3�e�0�6�4�3�8�b�5�f�0�0�6�d�a�2�0�4�9�9�2�6�c�9�1�7�a�8�9�9�2�8�8�1�6�9�9�8�5�c�0�e�f�4�1�0�3�8�8�8�1�9�b�5�c�c�9�c�d�1�1�d�
C�:�\�2�e�8�9�d�3�4�1�a�d�5�8�6�6�f�f�2�6�2�7�9�a�4�c�7�8�c�9�8�7�4�5�3�1�b�2�6�2�5�2�6�8�d�b�d�b�8�1�7�3�1�4�5�0�9�c�4�8�1�1�d�7�3�8�
C�:�\�C�p�I�a�E�M�G�Q�.�e�x�e�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�s�a�m�p�l�e�.�e�x�e�
C�:�\�f�3�a�9�f�d�0�d�5�2�f�a�9�2�2�e�2�e�c�2�c�d�f�c�f�1�7�9�4�5�5�5�d�9�b�f�6�6�4�f�7�0�a�a�f�9�f�1�2�5�7�4�8�1�e�9�5�b�9�3�5�d�a�4�
C�:�\�D�o�c�u�m�e�n�t�s� �a�n�d� �S�e�t�t�i�n�g�s�\�A�d�m�i�n�i�s�t�r�a�t�o�r�\�D�e�s�k�t�o�p�\�E�P�k�G�9�J�P�J�.�e�x�e�
C�:�\�8�h�0�m�X�5�x�c�.�e�x�e�
C�:�\�e�9�5�c�6�2�a�6�0�5�f�2�6�7�0�a�2�f�2�8�b�c�b�4�e�2�d�8�7�6�d�d�5�b�a�c�b�c�8�d�9�3�0�7�e�9�9�0�e�7�2�0�a�d�0�1�7�2�4�b�e�4�3�9�
C�:�\�b�a�b�a�4�8�5�1�3�9�c�b�1�8�5�3�d�a�c�6�f�a�3�1�a�f�8�d�3�0�5�b�d�b�0�2�b�2�1�e�8�2�9�7�7�8�7�a�1�4�8�f�e�e�4�6�e�f�c�1�d�2�4�9�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�h�h�c�b�r�n�a�f�f�.�e�x�e�
C�:�\�U�s�e�r�s�\�P�e�t�r�a�\�A�p�p�D�a�t�a�\�L�o�c�a�l�\�T�e�m�p�\�h�h�c�b�r�n�a�f�f�.�p�e�3�2�
C�:�\�U�s�e�r�s�\�a�d�m�i�n�\�D�o�w�n�l�o�a�d�s�\�4�9�6�5�0�f�7�2�5�a�9�f�d�b�d�e�_�h�h�c�b�r�n�a�f�f�.�e�x�e�
Process Tree
-
05123db740f02a3867ab928d6aac43c85b09ab6ecac1d77225c0ea7b9897bf26.exe (2400)
"C:\Users\Administrator\AppData\Local\Temp\05123db740f02a3867ab928d6aac43c85b09ab6ecac1d77225c0ea7b9897bf26.exe"
- hhcbrnaff.exe (2656) "C:\Users\ADMINI~1\AppData\Local\Temp\hhcbrnaff.exe"
DNS
TCP
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 49164 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49165 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49166 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49167 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49168 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49169 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49170 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49171 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49172 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49173 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49174 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49175 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49176 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49177 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49178 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49179 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49180 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49181 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49182 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49183 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49184 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49185 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49186 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49187 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49188 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49189 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49190 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49191 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49192 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49193 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49194 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49195 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49196 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49197 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49198 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49199 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49200 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49201 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49202 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49203 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49204 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49205 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49206 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49207 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49208 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49209 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49210 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49211 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49212 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49213 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49214 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49215 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49216 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49217 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49218 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49219 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49220 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49221 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49222 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49223 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49224 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49225 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49226 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49227 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49228 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49229 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49230 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49231 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49232 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49233 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49234 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49235 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49236 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49237 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49238 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49239 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49240 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49241 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49242 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49243 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49244 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49245 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49246 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49247 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49248 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49249 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49250 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49251 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49252 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49253 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49254 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49255 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49256 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49257 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49258 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49259 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49260 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49261 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49262 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49263 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49264 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49265 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49266 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49267 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49268 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49269 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49270 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49271 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49272 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49273 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49274 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49275 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49276 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49277 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49278 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49279 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49280 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49281 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49282 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49283 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49284 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49285 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49286 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49287 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49288 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49289 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49290 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49291 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49292 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49293 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49294 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49295 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49296 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49297 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49298 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49299 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49300 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49301 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49302 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49303 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49304 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49305 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49306 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49307 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49308 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49309 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49310 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49311 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49312 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49313 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49314 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49315 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49316 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49317 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49318 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49319 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49320 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49321 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49322 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49323 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49324 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49325 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49326 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49327 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49328 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49329 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49330 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49331 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49332 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49333 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49334 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49335 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49336 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49337 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49338 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49339 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49340 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49341 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49342 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49343 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49344 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49345 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49346 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49347 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49348 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49349 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49350 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49351 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49352 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49353 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49354 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49355 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49356 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49357 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49358 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49359 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49360 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49361 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49362 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49363 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49364 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49365 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49366 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49367 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49368 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49369 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49370 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49371 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49372 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49373 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49374 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49375 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49376 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49377 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49378 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49379 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49380 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49381 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49382 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49383 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49384 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49385 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49386 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49387 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49388 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49389 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49390 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49391 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49392 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49393 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49394 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49395 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49396 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49397 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49398 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49399 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49400 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49401 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49402 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49403 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49404 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49405 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49406 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49407 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49408 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49409 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49410 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49411 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49412 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49413 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49414 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49415 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49416 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49417 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49418 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49419 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49420 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49421 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49422 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49423 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49424 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49425 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49426 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49427 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49428 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49429 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49430 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49431 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49432 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49433 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49434 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49435 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49436 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49437 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49438 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49439 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49440 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49441 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49442 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49443 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49444 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49445 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49446 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49447 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49448 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49449 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49450 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49451 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49452 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49453 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49454 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49455 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49456 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49457 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49458 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49459 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49460 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49461 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49462 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49463 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49464 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49465 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49466 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49467 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49468 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49469 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49470 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49471 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49472 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49473 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49474 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49475 | 124.225.27.62 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49476 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49477 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49478 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49479 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49480 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49481 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49482 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49483 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49484 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49485 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49486 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49487 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49488 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49489 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49490 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49491 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49492 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49493 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49494 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49495 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49496 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49497 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49498 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49499 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49500 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49501 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49502 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49503 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49504 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49505 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49506 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49507 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49508 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49509 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49510 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49511 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49512 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49513 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49514 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49515 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49516 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49517 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49518 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49519 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49520 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49521 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49522 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49523 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49524 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49525 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49526 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49527 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49528 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49529 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49530 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49531 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49532 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49533 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49534 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49535 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49536 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49537 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49538 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49539 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49540 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49541 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49542 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49543 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49544 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49545 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49546 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49547 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49548 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49549 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49550 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49551 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49552 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49553 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49554 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49555 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49556 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49557 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49558 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49559 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49560 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49561 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49562 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49563 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49564 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49565 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49566 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49567 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49568 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49569 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49570 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49571 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49572 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49573 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49574 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49575 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49576 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49577 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49578 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49579 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49580 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49581 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49582 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49583 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49584 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49585 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49586 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49587 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49588 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49589 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49590 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49591 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49592 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49593 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49594 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49595 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49596 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49597 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49598 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49599 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49600 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49601 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49602 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49603 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49604 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49605 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49606 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49607 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49608 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49609 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49610 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49611 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49612 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49613 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49614 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49615 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49616 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49617 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49618 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49619 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49620 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49621 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49622 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49623 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49624 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49625 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49626 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49627 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49628 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49629 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49630 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49631 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49632 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49633 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49634 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49635 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49636 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49637 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49638 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49639 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49640 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49641 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49642 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49643 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49644 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49645 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49646 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49647 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49648 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49649 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49650 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49651 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49652 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49653 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49654 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49655 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49656 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49657 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49658 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49659 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49660 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49661 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49662 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49663 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49664 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49665 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49666 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49667 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49668 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49669 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49670 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49671 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49672 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49673 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49674 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49675 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49676 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49677 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49678 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49679 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49680 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49681 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49682 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49683 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49684 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49685 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49686 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49687 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49688 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49689 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49690 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49691 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49692 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49694 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49695 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49696 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49697 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49698 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49699 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49700 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49701 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49702 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49703 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49704 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49705 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49706 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49707 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49708 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49709 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49710 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49711 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49712 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49713 | 156.254.147.137 mokoshoponline.com | 443 |
| 192.168.56.101 | 49714 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49715 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49716 | 124.225.27.61 www.download.windowsupdate.com | 80 |
| 192.168.56.101 | 49717 | 156.254.147.137 mokoshoponline.com | 443 |
UDP
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 53179 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 49642 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 61714 | 114.114.114.114 | 53 |
| 192.168.56.101 | 61714 | 8.8.8.8 | 53 |
| 192.168.56.101 | 56933 | 8.8.8.8 | 53 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
| 192.168.56.101 | 58485 | 114.114.114.114 | 53 |
| 192.168.56.101 | 58485 | 8.8.8.8 | 53 |
| 192.168.56.101 | 57665 | 114.114.114.114 | 53 |
| 192.168.56.101 | 57665 | 8.8.8.8 | 53 |
| 192.168.56.101 | 51758 | 114.114.114.114 | 53 |
| 192.168.56.101 | 51758 | 8.8.8.8 | 53 |
| 192.168.56.101 | 52215 | 8.8.8.8 | 53 |
HTTP & HTTPS Requests
No HTTP requests performed.
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts
| Name | 69d88f3214c7bd70_94308059b57b3142e455b38a6eb92015 |
|---|---|
| Filepath | C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015 |
| Size | 342.0B |
| Processes | 2656 (hhcbrnaff.exe) |
| Type | data |
| MD5 | 7e9a28eae8821da7229c100f7c97436d |
| SHA1 | 0a3a0bbbb01ca30168860992b267e9e006659760 |
| SHA256 | 69d88f3214c7bd70e7772a671eb3fcc710aa9911ad6aa8e3b3da868a0c58c992 |
| CRC32 | A4CF875B |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | a9a20ed0913123f8_tar90c6.tmp |
|---|---|
| Filepath | C:\Users\Administrator\AppData\Local\Temp\Tar90C6.tmp |
| Size | 181.9KB |
| Processes | 2656 (hhcbrnaff.exe) |
| Type | data |
| MD5 | 4ea6026cf93ec6338144661bf1202cd1 |
| SHA1 | a1dec9044f750ad887935a01430bf49322fbdcb7 |
| SHA256 | 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8 |
| CRC32 | 6CA8AF0B |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | e9df1f030e70d63e_hhcbrnaff.exe |
|---|---|
| Filepath | C:\Users\Administrator\AppData\Local\Temp\hhcbrnaff.exe |
| Size | 50.8KB |
| Processes | 2400 (05123db740f02a3867ab928d6aac43c85b09ab6ecac1d77225c0ea7b9897bf26.exe) |
| Type | PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed |
| MD5 | e36efd53472ab8f118e8a8cfa8dfefaa |
| SHA1 | 0322bb0650b2fb0fb351980c645741f97a2a2850 |
| SHA256 | e9df1f030e70d63e609f5e50cafcbcebf184a8668e5f61f383f9b3df699ebcdd |
| CRC32 | 4BD942D0 |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 0d22af1d0d72870672eb36e666f9a5eb8cd9dd43 |
|---|---|
| Size | 4.5KB |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 52adfff604af1d0434bbadc9c9859061 |
| SHA1 | 0d22af1d0d72870672eb36e666f9a5eb8cd9dd43 |
| SHA256 | f14074d4ec44eb3c708ff1fc4b07f459a396a87542112d80e5cd268304abe580 |
| CRC32 | BAEF690E |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |