SmartHawk

3.4

中危

8 个模型检测该样本为恶意！

重新分析

下载样本

1700d61d1b4b8fe500d81c795b1d8bd40a13ac51c591366044171967d6f5a7ef

ead6157570ec283dcd7c56df4a4f8f44.exe

分析耗时

94s

最近分析

文件大小

1.4MB

静态报毒动态报毒 2345CN CMKX GENERIC PUA PJ UNSAFE

未检测暂无鹰眼引擎检测结果

查杀引擎	查杀时间	查杀版本
McAfee	20200304	6.0.6.653
Alibaba	20190527	0.3.0.5
Baidu	20190318	1.0.0.2
Avast	20200304	18.4.3895.0
Tencent	20200304	1.0.0.1
Kingsoft	20200304	2013.8.14.323
CrowdStrike	20190702	1.0

This executable is signed

This executable has a PDB path (1 个事件)

pdb_path

F:\branches\5.10.2\Rhino\Safe\Bin\Win32\release\pdb\2345ShortcutArrow.pdb

The file contains an unknown PE resource name possibly indicative of a packer (3 个事件)

resource name	PNG
resource name	TXT
resource name	XML

Foreign language identified in PE resource (32 个事件)

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

PNG

language

LANG_CHINESE

offset

0x00147398

filetype

PNG image data, 150 x 122, 8-bit colormap, non-interlaced

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000b2b

name

TXT

language

LANG_CHINESE

offset

0x00147ec8

filetype

MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00003aee

name

XML

language

LANG_CHINESE

offset

0x0010e758

filetype

XML 1.0 document, UTF-8 Unicode text, with CRLF line terminators

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x0000060c

name

XML

language

LANG_CHINESE

offset

0x0010e758

filetype

XML 1.0 document, UTF-8 Unicode text, with CRLF line terminators

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x0000060c

name

XML

language

LANG_CHINESE

offset

0x0010e758

filetype

XML 1.0 document, UTF-8 Unicode text, with CRLF line terminators

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x0000060c

name

XML

language

LANG_CHINESE

offset

0x0010e758

filetype

XML 1.0 document, UTF-8 Unicode text, with CRLF line terminators

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x0000060c

name

XML

language

LANG_CHINESE

offset

0x0010e758

filetype

XML 1.0 document, UTF-8 Unicode text, with CRLF line terminators

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x0000060c

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_ICON

language

LANG_CHINESE

offset

0x0013d788

filetype

GLS_BINARY_LSB_FIRST

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000468

name

RT_DIALOG

language

LANG_CHINESE

offset

0x0010da38

filetype

data

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x0000002c

name

RT_GROUP_ICON

language

LANG_CHINESE

offset

0x0013dbf0

filetype

data

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000014

name

RT_GROUP_ICON

language

LANG_CHINESE

offset

0x0013dbf0

filetype

data

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000014

name

RT_VERSION

language

LANG_CHINESE

offset

0x0010d720

filetype

data

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

size

0x00000318

File has been identified by 8 AntiVirus engines on VirusTotal as malicious (8 个事件)

Cylance	Unsafe
K7AntiVirus	Adware ( 0055ce2b1 )
K7GW	Adware ( 0055ce2b1 )
Sophos	Generic PUA PJ (PUA)
Cyren	W32/Trojan.CMKX-7438
Microsoft	PUA:Win32/2345Cn
ESET-NOD32	a variant of Win32/2345.H potentially unwanted
Fortinet	Riskware/2345

Communicates with host for which no DNS query was performed (1 个事件)

host

172.217.24.14

Connects to IP addresses that are no longer responding to requests (legitimate services will remain up-and-running usually) (2 个事件)

dead_host	172.217.24.14:443
dead_host	172.217.160.78:443

暂无二进制图像该样本未生成二进制可视化图像

暂无运行截图该样本运行过程中未生成截图

👋 欢迎使用 ChatHawk

我是您的恶意软件分析助手，可以帮您分析和解读恶意软件报告。请随时向我提问！

🔍 主要威胁分析

⚡ 行为特征

🛡️ 防护建议

🔧 技术手段

🎯 检测方法

🤖

Static Analysis
Strings

PE Compile Time

2020-02-18 23:14:10

Imports

Library gdiplus.dll:

• 0x4d66fc GdiplusShutdown

• 0x4d6700 GdiplusStartup

Library KERNEL32.dll:

• 0x4d6360 GlobalMemoryStatusEx

• 0x4d6364 SetLastError

• 0x4d6368 InterlockedExchange

• 0x4d636c DeviceIoControl

• 0x4d6370 FileTimeToSystemTime

• 0x4d6374 GetFileTime

• 0x4d6378 ReadFile

• 0x4d637c SetEndOfFile

• 0x4d6380 GetFileSize

• 0x4d6384 FindNextFileW

• 0x4d6388 FindClose

• 0x4d638c SetFileAttributesW

• 0x4d6390 DeleteFileW

• 0x4d6394 GetCurrentDirectoryW

• 0x4d6398 GetTempPathW

• 0x4d639c lstrlenW

• 0x4d63a0 GetFileAttributesW

• 0x4d63a4 SetFileTime

• 0x4d63a8 CreateDirectoryW

• 0x4d63ac GetFullPathNameW

• 0x4d63b0 OpenProcess

• 0x4d63b4 InterlockedExchangeAdd

• 0x4d63b8 LoadLibraryW

• 0x4d63bc LoadLibraryExW

• 0x4d63c0 FreeLibrary

• 0x4d63c4 OpenFileMappingW

• 0x4d63c8 CreateFileMappingW

• 0x4d63cc UnmapViewOfFile

• 0x4d63d0 MapViewOfFile

• 0x4d63d4 ExpandEnvironmentStringsW

• 0x4d63d8 EnterCriticalSection

• 0x4d63dc LeaveCriticalSection

• 0x4d63e0 InitializeCriticalSection

• 0x4d63e4 ReleaseMutex

• 0x4d63e8 MultiByteToWideChar

• 0x4d63ec GetACP

• 0x4d63f0 WideCharToMultiByte

• 0x4d63f4 GetFileAttributesExW

• 0x4d63f8 GetLongPathNameW

• 0x4d63fc FindFirstFileW

• 0x4d6400 CreateEventW

• 0x4d6404 ResetEvent

• 0x4d6408 Sleep

• 0x4d640c SetEvent

• 0x4d6410 ResumeThread

• 0x4d6414 LocalFree

• 0x4d6418 GetExitCodeProcess

• 0x4d641c CreateProcessW

• 0x4d6420 lstrcmpiW

• 0x4d6424 GetSystemInfo

• 0x4d6428 LockResource

• 0x4d642c GetVersionExW

• 0x4d6430 HeapAlloc

• 0x4d6434 CreateMutexW

• 0x4d6438 InitializeCriticalSectionAndSpinCount

• 0x4d643c OpenMutexW

• 0x4d6440 GetLastError

• 0x4d6444 DecodePointer

• 0x4d6448 DeleteCriticalSection

• 0x4d644c CloseHandle

• 0x4d6450 GetEnvironmentVariableW

• 0x4d6454 FreeResource

• 0x4d6458 FindResourceW

• 0x4d645c LoadResource

• 0x4d6460 WaitForSingleObject

• 0x4d6464 GetModuleHandleW

• 0x4d6468 GetTickCount

• 0x4d646c WriteFile

• 0x4d6470 GetSystemDirectoryW

• 0x4d6474 SizeofResource

• 0x4d6478 CreateFileW

• 0x4d647c GetLogicalDriveStringsW

• 0x4d6480 QueryDosDeviceW

• 0x4d6484 GetProcAddress

• 0x4d6488 WaitForMultipleObjects

• 0x4d648c InterlockedIncrement

• 0x4d6490 InterlockedDecrement

• 0x4d6494 HeapFree

• 0x4d6498 GetCurrentProcessId

• 0x4d649c GetProcessHeap

• 0x4d64a0 GetCurrentThreadId

• 0x4d64a4 GetLocalTime

• 0x4d64a8 GetModuleFileNameW

• 0x4d64ac SetFilePointer

• 0x4d64b0 GetWindowsDirectoryW

• 0x4d64b4 GetModuleHandleExW

• 0x4d64b8 OutputDebugStringW

• 0x4d64bc GetSystemTimeAsFileTime

• 0x4d64c0 QueryPerformanceCounter

• 0x4d64c4 IsProcessorFeaturePresent

• 0x4d64c8 IsDebuggerPresent

• 0x4d64cc EncodePointer

• 0x4d64d0 FormatMessageW

• 0x4d64d4 GetFileSizeEx

Library USER32.dll:

• 0x4d66d0 GetActiveWindow

• 0x4d66d4 OffsetRect

• 0x4d66d8 DefWindowProcW

• 0x4d66dc SetForegroundWindow

• 0x4d66e0 GetWindowLongW

• 0x4d66e4 ShowWindow

• 0x4d66e8 IsWindow

• 0x4d66ec SendMessageW

• 0x4d66f0 PostMessageW

• 0x4d66f4 LoadIconW

Library SHELL32.dll:

• 0x4d66c4 ShellExecuteExW

• 0x4d66c8 SHGetFolderPathW

Library ole32.dll:

• 0x4d6708 OleUninitialize

• 0x4d670c OleInitialize

Library MSVCP120.dll:

• 0x4d64dc ??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

• 0x4d64e0 ??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

• 0x4d64e4 ?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

• 0x4d64e8 ??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

• 0x4d64ec ??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

• 0x4d64f0 ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

• 0x4d64f4 ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

• 0x4d64f8 ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

• 0x4d64fc ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z

• 0x4d6500 ?uncaught_exception@std@@YA_NXZ

• 0x4d6504 ?_BADOFF@std@@3_JB

• 0x4d6508 ?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z

• 0x4d650c ?_Orphan_all@_Container_base0@std@@QAEXXZ

• 0x4d6510 ?_Xlength_error@std@@YAXPBD@Z

• 0x4d6514 ?_Xout_of_range@std@@YAXPBD@Z

• 0x4d6518 ?_Xbad_alloc@std@@YAXXZ

• 0x4d651c ?_Syserror_map@std@@YAPBDH@Z

• 0x4d6520 ?_Winerror_map@std@@YAPBDH@Z

• 0x4d6524 ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

• 0x4d6528 ??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

• 0x4d652c ?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

• 0x4d6530 ?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

• 0x4d6534 ?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

• 0x4d6538 ?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

• 0x4d653c ?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

• 0x4d6540 ?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

• 0x4d6544 ?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

• 0x4d6548 ?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

• 0x4d654c ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

• 0x4d6550 ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

• 0x4d6554 ?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

• 0x4d6558 ?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

• 0x4d655c ??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

Library MSVCR120.dll:

• 0x4d6564 sprintf_s

• 0x4d6568 memcpy

• 0x4d656c memset

• 0x4d6570 memmove

• 0x4d6574 _purecall

• 0x4d6578 ??3@YAXPAX@Z

• 0x4d657c ??2@YAPAXI@Z

• 0x4d6580 free

• 0x4d6584 ??_V@YAXPAX@Z

• 0x4d6588 atoi

• 0x4d658c malloc

• 0x4d6590 wcsrchr

• 0x4d6594 memcpy_s

• 0x4d6598 _wfopen_s

• 0x4d659c rewind

• 0x4d65a0 fread

• 0x4d65a4 fwrite

• 0x4d65a8 ftell

• 0x4d65ac fseek

• 0x4d65b0 fclose

• 0x4d65b4 _dtest

• 0x4d65b8 modf

• 0x4d65bc _CxxThrowException

• 0x4d65c0 __RTDynamicCast

• 0x4d65c4 ?name@type_info@@QBEPBDPAU__type_info_node@@@Z

• 0x4d65c8 strtod

• 0x4d65cc ?terminate@@YAXXZ

• 0x4d65d0 wcschr

• 0x4d65d4 towlower

• 0x4d65d8 wcsstr

• 0x4d65dc _vsnwprintf

• 0x4d65e0 towupper

• 0x4d65e4 _beginthreadex

• 0x4d65e8 rand

• 0x4d65ec srand

• 0x4d65f0 _time64

• 0x4d65f4 _errno

• 0x4d65f8 _except1

• 0x4d65fc ??1exception@std@@UAE@XZ

• 0x4d6600 ??0exception@std@@QAE@XZ

• 0x4d6604 ??0exception@std@@QAE@ABV01@@Z

• 0x4d6608 strstr

• 0x4d660c calloc

• 0x4d6610 _wtoi

• 0x4d6614 memchr

• 0x4d6618 tolower

• 0x4d661c toupper

• 0x4d6620 _stricmp

• 0x4d6624 _splitpath_s

• 0x4d6628 _wcsnicmp

• 0x4d662c _mktime64

• 0x4d6630 _localtime64

• 0x4d6634 sprintf

• 0x4d6638 _vswprintf_c_l

• 0x4d663c swscanf_s

• 0x4d6640 _wcsicmp

• 0x4d6644 wcstoul

• 0x4d6648 wcsncpy

• 0x4d664c _lock

• 0x4d6650 _unlock

• 0x4d6654 _calloc_crt

• 0x4d6658 __dllonexit

• 0x4d665c _onexit

• 0x4d6660 ??1type_info@@UAE@XZ

• 0x4d6664 _XcptFilter

• 0x4d6668 _controlfp_s

• 0x4d666c _invoke_watson

• 0x4d6670 __crtSetUnhandledExceptionFilter

• 0x4d6674 _except_handler4_common

• 0x4d6678 __CxxFrameHandler3

• 0x4d667c __crtTerminateProcess

• 0x4d6680 __crtUnhandledException

• 0x4d6684 _crt_debugger_hook

• 0x4d6688 _commode

• 0x4d668c _fmode

• 0x4d6690 _wcmdln

• 0x4d6694 _initterm

• 0x4d6698 _initterm_e

• 0x4d669c __setusermatherr

• 0x4d66a0 _configthreadlocale

• 0x4d66a4 _cexit

• 0x4d66a8 _exit

• 0x4d66ac exit

• 0x4d66b0 __set_app_type

• 0x4d66b4 __wgetmainargs

• 0x4d66b8 _amsg_exit

• 0x4d66bc __crtGetShowWindowMode

Library 2345MiniUI.dll:

• 0x4d6000 ?GetViewByID@RCMiniUIView@RC@@QBEPAV12@H@Z

• 0x4d6004 ?GetParent@RCMiniUIView@RC@@QBEPAV12@XZ

• 0x4d6008 ?SetInnerText@RCMiniUIIconBtn@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@_N@Z

• 0x4d600c ?SetInnerText@RCMiniUIIconBtn@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z

• 0x4d6010 ?SetSkin@RCMiniUIImageBtn@RC@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

• 0x4d6014 ?Load@RCMiniUIImageBtn@RC@@UAE_NABVRCXmlNode@2@@Z

• 0x4d6018 ?GetState@RCMiniUIButton@RC@@QBE?AW4ButtonState@12@XZ

• 0x4d601c ?SetState@RCMiniUIButton@RC@@QAEXW4ButtonState@12@@Z

• 0x4d6020 ?Layout@RCMiniUIButton@RC@@UAEXXZ

• 0x4d6024 ?OnMousePressed@RCMiniUIButton@RC@@UAE_NIABUtagPOINT@@_N@Z

• 0x4d6028 ?OnMouseEntered@RCMiniUIButton@RC@@UAE_NABUtagPOINT@@@Z

• 0x4d602c ?OnMouseExited@RCMiniUIButton@RC@@UAE_NABUtagPOINT@@@Z

• 0x4d6030 ?HitTest@RCMiniUIButton@RC@@UBE_NABUtagPOINT@@@Z

• 0x4d6034 ?OnFocus@RCMiniUIButton@RC@@UAEXW4RCMiniUIFocusChangeReason@2@@Z

• 0x4d6038 ?OnBlur@RCMiniUIButton@RC@@UAEXXZ

• 0x4d603c ?SetEnabled@RCMiniUIButton@RC@@UAEX_N@Z

• 0x4d6040 ?GetDrawFontAttr@RCMiniUIButton@RC@@UAE?AVRCMiniUIStringAttribute@2@XZ

• 0x4d6044 ?GetDrawBgColor@RCMiniUIButton@RC@@UAEKXZ

• 0x4d6048 ?GetDrawTexColor@RCMiniUIButton@RC@@UAEKXZ

• 0x4d604c ??0RCMiniUiImgChkBox@RC@@QAE@XZ

• 0x4d6050 ??1RCMiniUiImgChkBox@RC@@UAE@XZ

• 0x4d6054 ?Paint@RCMiniUiImgChkBox@RC@@MAEXPAVRCMiniUICanvas@2@@Z

• 0x4d6058 ?OnMouseReleased@RCMiniUiImgChkBox@RC@@MAE_NIABUtagPOINT@@_N@Z

• 0x4d605c ?OnKeyPressed@RCMiniUiImgChkBox@RC@@MAE_NIII@Z

• 0x4d6060 ?CalcSize@RCMiniUiImgChkBox@RC@@MAE?AUtagSIZE@@XZ

• 0x4d6064 ?SetAttribute@RCMiniUiImgChkBox@RC@@MAEJPBD0H@Z

• 0x4d6068 ?HexStringToColor@RCMiniUIObject@RC@@SAKPBD@Z

• 0x4d606c ?DrawArc@RCMiniUICanvas@RC@@QAE_NABUtagRECT@@KEHHH@Z

• 0x4d6070 ?ConvertStringToUInt32@RCMiniUIUtils@RC@@SAIPBD@Z

• 0x4d6074 ?width@RCMiniUIView@RC@@QBEHXZ

• 0x4d6078 ?height@RCMiniUIView@RC@@QBEHXZ

• 0x4d607c ?CenterRotate@RCMiniUICanvas@RC@@QAEXABUtagPOINT@@M@Z

• 0x4d6080 ?AnimationEnded@RCMiniUIAnimationDelegate@RC@@UAEXPBVRCMiniUIAnimation@2@@Z

• 0x4d6084 ?GetID@RCMiniUIView@RC@@QBEHXZ

• 0x4d6088 ?GetAnimationId@RCMiniUIAnimation@RC@@QBEIXZ

• 0x4d608c ?SetTranseMouse@RCMiniUIView@RC@@QAEX_N@Z

• 0x4d6090 ??0RCMiniUIGifView@RC@@QAE@XZ

• 0x4d6094 ??1RCMiniUIGifView@RC@@UAE@XZ

• 0x4d6098 ?Play@RCMiniUIGifView@RC@@QAEXXZ

• 0x4d609c ?Load@RCMiniUIGifView@RC@@UAE_NABVRCXmlNode@2@@Z

• 0x4d60a0 ?Paint@RCMiniUIGifView@RC@@UAEXPAVRCMiniUICanvas@2@@Z

• 0x4d60a4 ?AnimationProgressed@RCMiniUIGifView@RC@@UAEXPBVRCMiniUIAnimation@2@@Z

• 0x4d60a8 ?OnMiniUITimer@RCMiniUIGifView@RC@@UAEXE@Z

• 0x4d60ac ?SetAttribute@RCMiniUIGifView@RC@@UAEJPBD0H@Z

• 0x4d60b0 ?GetLocalBounds@RCMiniUIView@RC@@QBE?AUtagRECT@@XZ

• 0x4d60b4 ?CreatePath@RCMiniUICanvas@RC@@QAEPAVRCMiniUIPath@2@XZ

• 0x4d60b8 ??0RCMiniUICanvasStateGuard@RC@@QAE@PAVRCMiniUICanvas@1@@Z

• 0x4d60bc ??1RCMiniUICanvasStateGuard@RC@@QAE@XZ

• 0x4d60c0 ??0RCMiniUICanvasPathClipGuard@RC@@QAE@PAVRCMiniUICanvas@1@PAVRCMiniUIPath@1@@Z

• 0x4d60c4 ??1RCMiniUICanvasPathClipGuard@RC@@QAE@XZ

• 0x4d60c8 ?GetSkin@RCMiniUIImageView@RC@@QAEPAVRCMiniUISkin@2@XZ

• 0x4d60cc ?AnimationStarted@RCMiniUIAnimationDelegate@RC@@UAEXPBVRCMiniUIAnimation@2@@Z

• 0x4d60d0 ??1RCMiniUIAnimationDelegate@RC@@UAE@XZ

• 0x4d60d4 ?GetObjectClass@RCMiniUITextView@RC@@UAEPBDXZ

• 0x4d60d8 ?IsClass@RCMiniUITextView@RC@@UAE_NPBD@Z

• 0x4d60dc ?GetObjectClass@RCMiniUIImageView@RC@@UAEPBDXZ

• 0x4d60e0 ?IsClass@RCMiniUIImageView@RC@@UAE_NPBD@Z

• 0x4d60e4 ??_7RCMiniUIAnimationDelegate@RC@@6B@

• 0x4d60e8 ??0RCMiniUIView@RC@@QAE@XZ

• 0x4d60ec ??1RCMiniUIView@RC@@UAE@XZ

• 0x4d60f0 ?MoveWindow@RCMiniUIView@RC@@QAEXHH_N@Z

• 0x4d60f4 ?SetBounds@RCMiniUIView@RC@@QAEXABUtagRECT@@@Z

• 0x4d60f8 ?GetNeedLayout@RCMiniUIView@RC@@QAE_NXZ

• 0x4d60fc ?SetStyle@RCMiniUIView@RC@@QAEXABVRCMiniUIStyle@2@@Z

• 0x4d6100 ?SetID@RCMiniUIView@RC@@QAEXH@Z

• 0x4d6104 ?SetFocus@RCMiniUIView@RC@@UAEXXZ

• 0x4d6108 ?GetChildViewAt@RCMiniUIView@RC@@QBEPAV12@I@Z

• 0x4d610c ?GetChildViewCount@RCMiniUIView@RC@@QBEIXZ

• 0x4d6110 ?Load@RCMiniUIView@RC@@UAE_NABVRCXmlNode@2@@Z

• 0x4d6114 ?ReadXmlAttribute@RCMiniUIView@RC@@UAEXABVRCXmlNode@2@@Z

• 0x4d6118 ?LoadChilds@RCMiniUIView@RC@@UAE_NABVRCXmlNode@2@@Z

• 0x4d611c ?OnLoadFinished@RCMiniUIView@RC@@UAEXXZ

• 0x4d6120 ?Layout@RCMiniUIView@RC@@UAEXXZ

• 0x4d6124 ?LayoutChild@RCMiniUIView@RC@@UAEXXZ

• 0x4d6128 ?HitTest@RCMiniUIView@RC@@UBE_NABUtagPOINT@@@Z

• 0x4d612c ?ResetState@RCMiniUIView@RC@@UAEXXZ

• 0x4d6130 ?SetVisible@RCMiniUIView@RC@@UAEX_N@Z

• 0x4d6134 ?IsVisible@RCMiniUIView@RC@@UBE_NXZ

• 0x4d6138 ?SetEnabled@RCMiniUIView@RC@@UAEX_N@Z

• 0x4d613c ?IsEnabled@RCMiniUIView@RC@@UBE_NXZ

• 0x4d6140 ?SetSkin@RCMiniUIView@RC@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

• 0x4d6144 ?SetLightFrame@RCMiniUIView@RC@@UAEX_N@Z

• 0x4d6148 ?HasLightFrame@RCMiniUIView@RC@@UBE_NXZ

• 0x4d614c ?SetDottedLine@RCMiniUIView@RC@@UAEX_N@Z

• 0x4d6150 ?HasDottedLine@RCMiniUIView@RC@@UBE_NXZ

• 0x4d6154 ?OnChildViewIDChanged@RCMiniUIView@RC@@UAEXPAV12@H@Z

• 0x4d6158 ?GetViewForPoint@RCMiniUIView@RC@@UAEPAV12@ABUtagPOINT@@@Z

• 0x4d615c ?NotifyEnterExitChild@RCMiniUIView@RC@@UAE_NPAV12@0@Z

• 0x4d6160 ?CalcSize@RCMiniUIView@RC@@UAE?AUtagSIZE@@XZ

• 0x4d6164 ?SetAttribute@RCMiniUIView@RC@@UAEJPBD0H@Z

• 0x4d6168 ?OnMousePressed@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@_N@Z

• 0x4d616c ?OnMouseDragged@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@@Z

• 0x4d6170 ?OnMouseReleased@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@_N@Z

• 0x4d6174 ?OnMouseMoved@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@@Z

• 0x4d6178 ?OnMouseWheel@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@H@Z

• 0x4d617c ?OnMouseEntered@RCMiniUIView@RC@@UAE_NABUtagPOINT@@@Z

• 0x4d6180 ?OnMouseExited@RCMiniUIView@RC@@UAE_NABUtagPOINT@@@Z

• 0x4d6184 ?OnKeyPressed@RCMiniUIView@RC@@UAE_NIII@Z

• 0x4d6188 ?OnKeyReleased@RCMiniUIView@RC@@UAE_NIII@Z

• 0x4d618c ?OnCharInput@RCMiniUIView@RC@@UAE_NI@Z

• 0x4d6190 ?OnFocus@RCMiniUIView@RC@@UAEXW4RCMiniUIFocusChangeReason@2@@Z

• 0x4d6194 ?OnBlur@RCMiniUIView@RC@@UAEXXZ

• 0x4d6198 ?GetCursorForPoint@RCMiniUIView@RC@@UAEPAUHICON__@@IABUtagPOINT@@@Z

• 0x4d619c ?OnMiniUITimer@RCMiniUIView@RC@@UAEXE@Z

• 0x4d61a0 ?SchedulePaint@RCMiniUIView@RC@@UAEXXZ

• 0x4d61a4 ?SchedulePaint@RCMiniUIView@RC@@UAEXABUtagRECT@@_N@Z

• 0x4d61a8 ?Paint@RCMiniUIView@RC@@UAEXPAVRCMiniUICanvas@2@@Z

• 0x4d61ac ?PaintChildren@RCMiniUIView@RC@@UAEXPAVRCMiniUICanvas@2@AAV?$vector@PAVRCMiniUIView@RC@@V?$allocator@PAVRCMiniUIView@RC@@@std@@@std@@@Z

• 0x4d61b0 ?SetTooltipText@RCMiniUIView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z

• 0x4d61b4 ?GetTooltipText@RCMiniUIView@RC@@UBE?BV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ

• 0x4d61b8 ?SetTooltipMaxWidth@RCMiniUIView@RC@@UAEXH@Z

• 0x4d61bc ?GetTooltipMaxWidth@RCMiniUIView@RC@@UAEHXZ

• 0x4d61c0 ?MayItBePaintStart@RCMiniUIView@RC@@UAE_NXZ

• 0x4d61c4 ?IsPaintChildrenTrivial@RCMiniUIView@RC@@UAE_NXZ

• 0x4d61c8 ?SetMiniUITimer@RCMiniUIView@RC@@UAEIEI@Z

• 0x4d61cc ?KillMiniUITimer@RCMiniUIView@RC@@UAEXE@Z

• 0x4d61d0 ?IsClass@RCMiniUIObject@RC@@UAE_NPBD@Z

• 0x4d61d4 ?GetObjectClass@RCMiniUIObject@RC@@UAEPBDXZ

• 0x4d61d8 ??0RCMiniUITextView@RC@@QAE@XZ

• 0x4d61dc ??1RCMiniUITextView@RC@@UAE@XZ

• 0x4d61e0 ?GetInnerText@RCMiniUITextView@RC@@UBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ

• 0x4d61e4 ?SetInnerText@RCMiniUITextView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@_N@Z

• 0x4d61e8 ?SetInnerText@RCMiniUITextView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z

• 0x4d61ec ?GetInnerTextSize@RCMiniUITextView@RC@@UAE?AUtagSIZE@@XZ

• 0x4d61f0 ?GetDrawTexColor@RCMiniUITextView@RC@@UAEKXZ

• 0x4d61f4 ?Load@RCMiniUITextView@RC@@UAE_NABVRCXmlNode@2@@Z

• 0x4d61f8 ?SetAttribute@RCMiniUITextView@RC@@UAEJPBD0H@Z

• 0x4d61fc ?SetTooltipText@RCMiniUITextView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z

• 0x4d6200 ?GetTooltipText@RCMiniUITextView@RC@@UBE?BV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ

• 0x4d6204 ?SetTooltipMaxWidth@RCMiniUITextView@RC@@UAEXH@Z

• 0x4d6208 ?Layout@RCMiniUITextView@RC@@UAEXXZ

• 0x4d620c ?GetTooltipMaxWidth@RCMiniUITextView@RC@@UAEHXZ

• 0x4d6210 ?CalcSize@RCMiniUITextView@RC@@MAE?AUtagSIZE@@XZ

• 0x4d6214 ?Paint@RCMiniUITextView@RC@@MAEXPAVRCMiniUICanvas@2@@Z

• 0x4d6218 ?ParseString2Rect@RCMiniUIUtils@RC@@SA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAUtagRECT@@@Z

• 0x4d621c ?ConvertStringToInt32@RCMiniUIUtils@RC@@SAHPBD@Z

• 0x4d6220 ??0RCMiniUIAnimation@RC@@QAE@II@Z

• 0x4d6224 ??1RCMiniUIAnimation@RC@@UAE@XZ

• 0x4d6228 ?SetDuration@RCMiniUIAnimation@RC@@QAEXI@Z

• 0x4d622c ?SetAnimationType@RCMiniUIAnimation@RC@@QAEXI@Z

• 0x4d6230 ?SetDelegate@RCMiniUIAnimation@RC@@QAEXPAVRCMiniUIAnimationDelegate@2@@Z

• 0x4d6234 ?SetAnimationContainer@RCMiniUIAnimation@RC@@QAEXPAVRCMiniUIAnimationContainer@2@@Z

• 0x4d6238 ?IsAnimating@RCMiniUIAnimation@RC@@QBE_NXZ

• 0x4d623c ?CurrentValueBetween@RCMiniUIAnimation@RC@@QBEHHH@Z

• 0x4d6240 ?GetCurrentValue@RCMiniUIAnimation@RC@@UBENXZ

• 0x4d6244 ?Start@RCMiniUIAnimation@RC@@UAEXXZ

• 0x4d6248 ?Stop@RCMiniUIAnimation@RC@@UAEXXZ

• 0x4d624c ?Step@RCMiniUIAnimation@RC@@UAEX_J@Z

• 0x4d6250 ?AnimateToState@RCMiniUIAnimation@RC@@UAEXN@Z

• 0x4d6254 ??0RCMiniUIStyle@RC@@QAE@XZ

• 0x4d6258 ??4RCMiniUIStyle@RC@@QAEAAV01@ABV01@@Z

• 0x4d625c ??1RCMiniUIStyle@RC@@UAE@XZ

• 0x4d6260 ??0RCMiniUIAnimationContainer@RC@@QAE@PAVRCMiniUIView@1@@Z

• 0x4d6264 ??1RCMiniUIAnimationContainer@RC@@UAE@XZ

• 0x4d6268 ?OnAnimationTimer@RCMiniUIAnimationContainer@RC@@QAEXI@Z

• 0x4d626c ??0RCMiniUIRuntimeClass@RC@@QAE@PBDP6APAVRCMiniUIObject@1@XZPAU01@@Z

• 0x4d6270 ??1RCMiniUIRuntimeClass@RC@@QAE@XZ

• 0x4d6274 ??0TMiniUIObjClassInit@RC@@QAE@PAURCMiniUIRuntimeClass@1@@Z

• 0x4d6278 ??0RCMiniUIImageView@RC@@QAE@XZ

• 0x4d627c ??1RCMiniUIImageView@RC@@UAE@XZ

• 0x4d6280 ?SetSkin@RCMiniUIImageView@RC@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

• 0x4d6284 ?Paint@RCMiniUIImageView@RC@@UAEXPAVRCMiniUICanvas@2@@Z

• 0x4d6288 ?CalcSize@RCMiniUIImageView@RC@@UAE?AUtagSIZE@@XZ

• 0x4d628c ?SetAttribute@RCMiniUIImageView@RC@@UAEJPBD0H@Z

• 0x4d6290 ??0RCMiniUIDialog@RC@@QAE@I@Z

• 0x4d6294 ??1RCMiniUIDialog@RC@@UAE@XZ

• 0x4d6298 ?DoModal@RCMiniUIDialog@RC@@QAEHPAUHWND__@@J@Z

• 0x4d629c ?SetWindowPos@RCMiniAtlWindow@@QAEHPAUHWND__@@HHHHI@Z

• 0x4d62a0 ?AddChildView@RCMiniUIView@RC@@QAEXPAV12@@Z

• 0x4d62a4 ?SetItemAttribute@RCMiniUIDialogView@RC@@QAE_NIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z

• 0x4d62a8 ?OnDialogTimer@RCMiniUIDialogView@RC@@UAE_NIPAX@Z

• 0x4d62ac ?EndDialog@?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@QAEHH@Z

• 0x4d62b0 ?SendMessageW@RCMiniAtlWindow@@QAEJIIJ@Z

• 0x4d62b4 ?PostMessageW@RCMiniAtlWindow@@QAEHIIJ@Z

• 0x4d62b8 ?PlayRang@RCMiniUIGifView@RC@@QAEXHH_N@Z

• 0x4d62bc ?Stop@RCMiniUIGifView@RC@@QAEXXZ

• 0x4d62c0 ?IsPlaying@RCMiniUIGifView@RC@@QAE_NXZ

• 0x4d62c4 ?GetFrameCount@RCMiniUIGifView@RC@@QAEHXZ

• 0x4d62c8 ?GetViewByID@RCMiniUIDialogView@RC@@QBEPAVRCMiniUIView@2@H@Z

• 0x4d62cc ?OnEsc@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62d0 ?OnEnter@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62d4 ?BeforeWindowDestroy@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62d8 ?OnFirstLayouted@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62dc ?OnDropFiles@RCMiniUIDialogView@RC@@UAEXABV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@@Z

• 0x4d62e0 ?OnMouseEnterDialog@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62e4 ?OnMouseLeaveDialog@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62e8 ?OnAnimateShowEnded@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62ec ?OnAnimateHideEnded@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62f0 ?OnDialogSkinChanged@RCMiniUIDialogView@RC@@UAEXXZ

• 0x4d62f4 ?ProcessWindowMessage@RCMiniUIDialog@RC@@UAEHPAUHWND__@@IIJAAJK@Z

• 0x4d62f8 ?GetDialogProc@?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@UAEP6GHPAUHWND__@@IIJ@ZXZ

• 0x4d62fc ?OnFinalMessage@?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@UAEXPAUHWND__@@@Z

• 0x4d6300 ?SetIcon@RCMiniAtlWindow@@QAEPAUHICON__@@PAU2@H@Z

• 0x4d6304 ?ReflectNotifications@?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAEJIIJAAH@Z

• 0x4d6308 ?GetHWND@RCMiniUIDialog@RC@@UAEPAUHWND__@@XZ

• 0x4d630c ?WindowDefKeyPressed@RCMiniUIDialog@RC@@EAE_NIII@Z

• 0x4d6310 ?GetRootView@RCMiniUIDialogView@RC@@UAEPAVRCMiniUIView@2@XZ

• 0x4d6314 ?GetToolTip@RCMiniUIDialogView@RC@@UAEAAV?$CToolTipCtrlT@VCWindow@ATL@@@WTL@@XZ

• 0x4d6318 ?OnMouseMoveInDialog@RCMiniUIDialogView@RC@@UAEXABVCPoint@WTL@@I@Z

• 0x4d631c ??0RCMiniUIRenderFactorySkia@RC@@QAE@XZ

• 0x4d6320 ??1RCMiniUIRenderFactorySkia@RC@@UAE@XZ

• 0x4d6324 ?Initialize@RCMiniUIRenderFactorySkia@RC@@UAE_NXZ

• 0x4d6328 ?CreateCanvas@RCMiniUIRenderFactorySkia@RC@@UAEPAVRCMiniUICanvas@2@HH_N@Z

• 0x4d632c ?CreateBitmap@RCMiniUIRenderFactorySkia@RC@@UAEPAVRCMiniUIBitmap@2@XZ

• 0x4d6330 ?InitRuntimeObject@RCMiniUIObjectFactory@RC@@SAXXZ

• 0x4d6334 ?GetGlobalStylePool@RCMiniUIManner@RC@@SAPAVRCMiniUIStylePoolInterface@2@XZ

• 0x4d6338 ?GetGlobalSkinPool@RCMiniUIManner@RC@@SAPAVRCMiniUISkinPoolInterface@2@XZ

• 0x4d633c ?GetGolobalFontPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIFontPoolInterface@2@XZ

• 0x4d6340 ?GetGolobalStringPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIStringPoolInterface@2@XZ

• 0x4d6344 ?Instance@RCMiniUIAppModule@RC@@SAAAV12@XZ

• 0x4d6348 ?Init@RCMiniUIAppModule@RC@@QAEXPAUHINSTANCE__@@@Z

• 0x4d634c ?Term@RCMiniUIAppModule@RC@@QAEXXZ

• 0x4d6350 ?SetRenderFactory@RCMiniUIAppModule@RC@@QAE_NPAVRCMiniUIRenderFactory@2@@Z

Library COMCTL32.dll:

• 0x4d6358 InitCommonControlsEx

Hosts

No hosts contacted.

DNS

Name	Response	Post-Analysis Lookup
time.windows.com	A 20.189.79.72 CNAME time.microsoft.akadns.net
clients2.google.com	A 172.217.160.78 CNAME clients.l.google.com A 172.217.160.110	172.217.160.78
dns.msftncsi.com	AAAA fd3e:4f5a:5b81::1	131.107.255.255
dns.msftncsi.com	A 131.107.255.255	131.107.255.255
teredo.ipv6.microsoft.com		127.0.0.1

TCP

No TCP connections recorded.

UDP

Source	Source Port	Destination	Destination Port
192.168.56.101	51378	114.114.114.114	53
192.168.56.101	51963	114.114.114.114	53
192.168.56.101	55368	114.114.114.114	53
192.168.56.101	60123	114.114.114.114	53
192.168.56.101	60384	114.114.114.114	53
192.168.56.101	62912	114.114.114.114	53
192.168.56.101	137	192.168.56.255	137
192.168.56.101	138	192.168.56.255	138
192.168.56.101	123	20.189.79.72 time.windows.com	123
192.168.56.101	49713	224.0.0.252	5355
192.168.56.101	53237	224.0.0.252	5355
192.168.56.101	53657	224.0.0.252	5355
192.168.56.101	56804	224.0.0.252	5355
192.168.56.101	58367	224.0.0.252	5355
192.168.56.101	61680	224.0.0.252	5355
192.168.56.101	62191	224.0.0.252	5355
192.168.56.101	62318	224.0.0.252	5355
192.168.56.101	63429	224.0.0.252	5355
192.168.56.101	65004	224.0.0.252	5355
192.168.56.101	1900	239.255.255.250	1900

HTTP & HTTPS Requests

No HTTP requests performed.

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Snort Alerts

No Snort Alerts

Sorry! No dropped files.

Sorry! No dropped buffers.