T12_O2Acs.pcap

MD5b25d76559458717da818931a43dfa603
Submission Date2020-09-16 03:00:22
Tags
Alert 1
Showing 1-1 of 1 item.
#
TimestampSrc IpDest IpAlert SignatureP
1
2020-09-14T05:42:15.635634-070010.183.0.482.113.127.253ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted*
DNS 2
Showing 1-2 of 2 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2020-09-14T05:41:37.474957-070010.183.0.462.109.121.17query5.0.183.10.in-addr.arpaPTR(not set)
2
2020-09-14T05:41:37.656788-070062.109.121.1710.183.0.4answer5.0.183.10.in-addr.arpaPTR(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 4
Showing 1-4 of 4 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2020-09-14T05:42:01.473160-070010.183.0.4acs.o2online.de80POST/cwmpWeb/WGCPEMgt401
2
2020-09-14T05:42:13.956479-070010.183.0.4acs.o2online.de80POST/cwmpWeb/WGCPEMgt401
3
2020-09-14T05:42:15.808467-070010.183.0.4acs.o2online.de80POST/cwmpWeb/WGCPEMgt200
4
2020-09-14T05:42:03.247614-070010.183.0.4acs.o2online.de80POST/cwmpWeb/WGCPEMgt200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 4
Showing 1-4 of 4 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2020-09-14T05:42:15.836076-07001846985809656612flow10.183.0.46194882.113.127.25380TCPpcapanalyzer
2
2020-09-14T05:42:15.836076-0700459503068351276flow10.183.0.412816205.185.216.4280TCPpcapanalyzer
3
2020-09-14T05:42:15.836076-07002052437718614325flow10.183.0.46194982.113.127.25380TCPpcapanalyzer
4
2020-09-14T05:42:15.836076-07001515652703665997flow10.183.0.43025762.109.121.1753UDPpcapanalyzer
File 8
Showing 1-8 of 8 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2020-09-14T05:42:13.952873-070010.183.0.482.113.127.253/cwmpWeb/WGCPEMgtASCII text, with very long lines6318
2
2020-09-14T05:42:01.462863-070010.183.0.482.113.127.253/cwmpWeb/WGCPEMgtASCII text, with very long lines6318
3
2020-09-14T05:42:01.473160-070082.113.127.25310.183.0.4/cwmpWeb/WGCPEMgtHTML document, ASCII text381
4
2020-09-14T05:42:13.956479-070082.113.127.25310.183.0.4/cwmpWeb/WGCPEMgtHTML document, ASCII text381
5
2020-09-14T05:42:03.042153-070010.183.0.482.113.127.253/cwmpWeb/WGCPEMgtASCII text, with very long lines6318
6
2020-09-14T05:42:15.642934-070010.183.0.482.113.127.253/cwmpWeb/WGCPEMgtASCII text, with very long lines6318
7
2020-09-14T05:42:15.808467-070082.113.127.25310.183.0.4/cwmpWeb/WGCPEMgtASCII text541
8
2020-09-14T05:42:03.247614-070082.113.127.25310.183.0.4/cwmpWeb/WGCPEMgtASCII text541

Comments

Update Download PCAP Delete