4.pcap

MD57f734e27e6cf07cc4319b8f59f00418d
Submission Date2019-08-15 02:49:56
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 44
Showing 1-20 of 44 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-14T23:51:47.807840-0700192.168.1.70192.168.1.1querydls1prd.di.atlas.samsung.comA(not set)
2
2019-08-14T23:51:47.808270-0700192.168.1.1192.168.1.70answerdls1prd.di.atlas.samsung.com(not set)(not set)
3
2019-08-14T23:51:47.793187-0700192.168.1.70192.168.1.1querydls1prd.di.atlas.samsung.comA(not set)
4
2019-08-14T23:51:47.805968-0700192.168.1.1192.168.1.70answerdls1prd.di.atlas.samsung.com(not set)(not set)
5
2019-08-14T23:51:59.381497-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
6
2019-08-14T23:51:59.381958-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
7
2019-08-14T23:52:59.587079-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
8
2019-08-14T23:52:59.587545-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
9
2019-08-14T23:52:58.881852-0700192.168.1.70192.168.1.1queryoneclient.sfx.msA(not set)
10
2019-08-14T23:52:58.892910-0700192.168.1.1192.168.1.70answeroneclient.sfx.ms(not set)(not set)
11
2019-08-14T23:54:57.553935-0700192.168.1.70192.168.1.1queryclients3.google.comA(not set)
12
2019-08-14T23:54:57.563326-0700192.168.1.1192.168.1.70answerclients3.google.com(not set)(not set)
13
2019-08-14T23:54:59.989010-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
14
2019-08-14T23:54:59.989489-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
15
2019-08-14T23:55:00.262101-0700192.168.1.70192.168.1.1querymdh-pa.googleapis.comA(not set)
16
2019-08-14T23:55:00.288171-0700192.168.1.1192.168.1.70answermdh-pa.googleapis.com(not set)(not set)
17
2019-08-14T23:57:15.497962-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
18
2019-08-14T23:57:15.498472-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
19
2019-08-14T23:54:58.436230-0700192.168.1.70192.168.1.1querytime.android.comA(not set)
20
2019-08-14T23:54:58.455257-0700192.168.1.1192.168.1.70answertime.android.com(not set)(not set)
TLS 20
Showing 1-20 of 20 items.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2019-08-14T23:51:47.998499-0700192.168.1.7052.19.116.79TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
2
2019-08-14T23:51:47.997240-0700192.168.1.7052.19.116.79TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
3
2019-08-14T23:52:58.103107-0700192.168.1.7064.233.163.94TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
4
2019-08-14T23:53:09.018497-0700192.168.1.7054.85.133.159TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
5
2019-08-14T23:54:57.294074-0700192.168.1.7077.88.21.207TLS 1.2C=RU, O=Yandex LLC, OU=Yandex Certification Authority, CN=Yandex CA
6
2019-08-14T23:54:57.443468-0700192.168.1.7087.250.250.115TLS 1.2DC=ru, DC=yandex, DC=ld, CN=YandexInternalCA
7
2019-08-14T23:55:00.165590-0700192.168.1.70173.194.73.95TLS 1.2(not set)
8
2019-08-14T23:55:04.087486-0700192.168.1.7087.250.250.207TLS 1.2C=RU, O=Yandex LLC, OU=Yandex Certification Authority, CN=Yandex CA
9
2019-08-14T23:51:48.003308-0700192.168.1.7052.19.116.79TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
10
2019-08-14T23:55:02.395562-0700192.168.1.7074.125.131.95TLS 1.2(not set)
11
2019-08-14T23:56:33.718271-0700192.168.1.7035.160.1.57TLS 1.2C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
12
2019-08-14T23:57:57.957454-0700192.168.1.70173.194.222.95TLS 1.2(not set)
13
2019-08-14T23:54:58.162081-0700192.168.1.70107.20.242.44TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
14
2019-08-14T23:54:58.340989-0700192.168.1.70157.240.20.52TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
15
2019-08-14T23:54:59.719344-0700192.168.1.7052.114.74.43TLS 1.2C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, OU=Microsoft IT, CN=Microsoft IT TLS CA 1
16
2019-08-14T23:55:00.046316-0700192.168.1.7064.233.161.95TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
17
2019-08-14T23:55:00.355209-0700192.168.1.7064.233.162.95TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
18
2019-08-14T23:55:01.373106-0700192.168.1.7074.125.131.95TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
19
2019-08-14T23:58:04.211675-0700192.168.1.70130.211.34.183TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL RSA CA 2018
20
2019-08-14T23:58:04.544760-0700192.168.1.7035.186.241.51TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL RSA CA 2018
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 2
Showing 1-2 of 2 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-14T23:54:57.634991-0700192.168.1.70clients3.google.com80GET/generate_204204
2
2019-08-14T23:54:58.088907-0700192.168.1.70clients3.google.com80GET/generate_204204
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 57
Showing 1-20 of 57 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-14T23:58:05.050916-0700282129988697161flow192.168.1.705697777.88.21.207443TCPpcapanalyzer
2
2019-08-14T23:58:05.050916-07002112357293727661flow192.168.1.705247435.160.1.57443TCPpcapanalyzer
3
2019-08-14T23:58:05.050916-07001999336720338flow192.168.1.705684887.250.250.115443TCPpcapanalyzer
4
2019-08-14T23:58:05.050916-07001836085663620965flow192.168.1.7053152173.194.222.11380TCPpcapanalyzer
5
2019-08-14T23:58:05.050916-070013668755092114flow192.168.1.703611974.125.131.119443TCPpcapanalyzer
6
2019-08-14T23:58:05.050916-07001984158956143152flow192.168.1.7034837176.58.34.2078070TCPpcapanalyzer
7
2019-08-14T23:58:05.050916-0700999316524583613flow192.168.1.704208552.0.252.15242TCPpcapanalyzer
8
2019-08-14T23:58:05.050916-07001704940984692026flow192.168.1.7041591107.20.242.44443TCPpcapanalyzer
9
2019-08-14T23:58:05.050916-0700298425094651743flow192.168.1.7037769192.168.1.153UDPpcapanalyzer
10
2019-08-14T23:58:05.050916-07001429451056907929flow192.168.1.703753652.0.253.964244TCPpcapanalyzer
11
2019-08-14T23:58:05.050916-0700313244879455429flow192.168.1.7046991173.194.73.95443TCPpcapanalyzer
12
2019-08-14T23:58:05.050916-07001581127827212676flow192.168.1.7035374130.211.34.183443TCPpcapanalyzer
13
2019-08-14T23:58:05.050916-0700879289344976283flow192.168.1.70(not set)192.168.1.1(not set)ICMPpcapanalyzer
14
2019-08-14T23:58:05.050916-0700879721000803057flow192.168.1.7059393192.168.1.153UDPpcapanalyzer
15
2019-08-14T23:58:05.050916-070036934600870789flow192.168.1.704466864.233.161.95443TCPpcapanalyzer
16
2019-08-14T23:58:05.050916-07001588154381516141flow192.168.1.7044299192.168.1.153UDPpcapanalyzer
17
2019-08-14T23:58:05.050916-07001027828640615674flow192.168.1.704900952.19.116.79443TCPpcapanalyzer
18
2019-08-14T23:58:05.050916-0700187372272789510flow192.168.1.7035784192.168.1.153UDPpcapanalyzer
19
2019-08-14T23:58:05.050916-0700475330502787029flow192.168.1.7041344192.168.1.153UDPpcapanalyzer
20
2019-08-14T23:58:05.050916-07001884129167738573flow192.168.1.7047675192.168.1.153UDPpcapanalyzer
File 0
#
TimestampSourceDestinationFile NameFile MagicFile Size
No results found.

Comments(not set)

Update Download PCAP Delete