9daa2c25-60f8-4a9a-b404-d15e5196315c.pcap

MD5333dffc6a455717d373393adacddadbc
Submission Date2019-08-17 16:00:48
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 4
Showing 1-4 of 4 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-09T06:11:49.978574-0700192.168.100.120192.168.100.2querywww.affittofacilesicuro.comA(not set)
2
2019-08-09T06:11:50.028111-0700192.168.100.2192.168.100.120answerwww.affittofacilesicuro.comA(not set)
3
2019-08-09T06:11:53.306835-0700192.168.100.120192.168.100.2querywww.download.windowsupdate.comA(not set)
4
2019-08-09T06:11:53.328034-0700192.168.100.2192.168.100.120answerwww.download.windowsupdate.comA(not set)
TLS 1
Showing 1-1 of 1 item.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-08-09T06:11:53.140298-0700192.168.100.12089.46.105.91TLSv1www.affittofacilesicuro.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 2
Showing 1-2 of 2 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-09T06:11:56.419797-0700192.168.100.120www.download.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/authrootstl.cab200
2
2019-08-09T06:11:56.558854-0700192.168.100.120www.download.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/F373B387065A28848AF2F34ACE192BDDC78E9CAC.crt200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 14
Showing 1-14 of 14 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-09T06:14:36.027135-07001267586332385590flow192.168.100.12051284224.0.0.2525355UDPpcapanalyzer
2
2019-08-09T06:14:36.027135-0700570594744623241flowfe80:0000:0000:0000:a179:b3ff:0199:231458953ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
3
2019-08-09T06:14:36.027135-0700723126212843904flowfe80:0000:0000:0000:a179:b3ff:0199:231452580ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
4
2019-08-09T06:14:36.027135-0700301407668915763flow192.168.100.12065089239.255.255.2501900UDPpcapanalyzer
5
2019-08-09T06:14:36.027135-070029699448046904flow192.168.100.12058719224.0.0.2525355UDPpcapanalyzer
6
2019-08-09T06:14:36.027135-07001725036856124012flow192.168.100.120137192.168.100.255137UDPpcapanalyzer
7
2019-08-09T06:14:36.027135-0700605624497505831flowfe80:0000:0000:0000:a179:b3ff:0199:2314546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
8
2019-08-09T06:14:36.027135-07002057763677833090flow192.168.100.120138192.168.100.255138UDPpcapanalyzer
9
2019-08-09T06:14:36.027135-07001100692492977312flowfe80:0000:0000:0000:a179:b3ff:0199:231449554ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
10
2019-08-09T06:14:36.027135-0700413641606922183flow192.168.100.12056688224.0.0.2525355UDPpcapanalyzer
11
2019-08-09T06:14:36.027135-0700144080870420115flow192.168.100.12058001192.168.100.253UDPpcapanalyzer
12
2019-08-09T06:14:36.027135-07001369162309501935flow192.168.100.12049482205.185.216.1080TCPpcapanalyzer
13
2019-08-09T06:14:36.027135-0700529826915448665flow192.168.100.1204945689.46.105.91443TCPpcapanalyzer
14
2019-08-09T06:14:36.027135-0700402826879954574flow192.168.100.12056000192.168.100.253UDPpcapanalyzer
File 2
Showing 1-2 of 2 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-09T06:11:56.419797-0700205.185.216.10192.168.100.120/msdownload/update/v3/static/trustedr/en/authrootstl.cabMicrosoft Cabinet archive data, 58000 bytes, 1 file58000
2
2019-08-09T06:11:56.558854-0700205.185.216.10192.168.100.120/msdownload/update/v3/static/trustedr/en/F373B387065A28848AF2F34ACE192BDDC78E9CAC.crtdata1471

Comments(not set)

Update Download PCAP Delete