9daa2c25-60f8-4a9a-b404-d15e5196315c.pcap

MD5333dffc6a455717d373393adacddadbc
Submission Date2019-08-17 16:00:48
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 4
Showing 1-4 of 4 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-09T06:11:49.978574-0700192.168.100.120192.168.100.2querywww.affittofacilesicuro.comA(not set)
2
2019-08-09T06:11:50.028111-0700192.168.100.2192.168.100.120answerwww.affittofacilesicuro.com(not set)(not set)
3
2019-08-09T06:11:53.306835-0700192.168.100.120192.168.100.2querywww.download.windowsupdate.comA(not set)
4
2019-08-09T06:11:53.328034-0700192.168.100.2192.168.100.120answerwww.download.windowsupdate.com(not set)(not set)
TLS 1
Showing 1-1 of 1 item.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2019-08-09T06:11:53.140298-0700192.168.100.12089.46.105.91TLSv1C=IT, ST=Bergamo, L=Ponte San Pietro, O=Actalis S.p.A./03358520967, CN=Actalis Domain Validation Server CA G2
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 2
Showing 1-2 of 2 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-09T06:11:56.419797-0700192.168.100.120www.download.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/authrootstl.cab200
2
2019-08-09T06:11:56.558854-0700192.168.100.120www.download.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/F373B387065A28848AF2F34ACE192BDDC78E9CAC.crt200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 14
Showing 1-14 of 14 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-09T06:14:36.027135-0700563797958877494flow192.168.100.12051284224.0.0.2525355UDPpcapanalyzer
2
2019-08-09T06:14:36.027135-07001691295593554057flowfe80:0000:0000:0000:a179:b3ff:0199:231458953ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
3
2019-08-09T06:14:36.027135-07001412030377881230flow192.168.100.12056000192.168.100.253UDPpcapanalyzer
4
2019-08-09T06:14:36.027135-07001842162761846323flow192.168.100.12065089239.255.255.2501900UDPpcapanalyzer
5
2019-08-09T06:14:36.027135-070013397899511335flowfe80:0000:0000:0000:a179:b3ff:0199:2314546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
6
2019-08-09T06:14:36.027135-0700302202237966720flowfe80:0000:0000:0000:a179:b3ff:0199:231452580ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
7
2019-08-09T06:14:36.027135-0700316839486521287flow192.168.100.12056688224.0.0.2525355UDPpcapanalyzer
8
2019-08-09T06:14:36.027135-0700746387755828536flow192.168.100.12058719224.0.0.2525355UDPpcapanalyzer
9
2019-08-09T06:14:36.027135-0700492993275011692flow192.168.100.120137192.168.100.255137UDPpcapanalyzer
10
2019-08-09T06:14:36.027135-07001220268677465248flowfe80:0000:0000:0000:a179:b3ff:0199:231449554ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
11
2019-08-09T06:14:36.027135-0700939349899805679flow192.168.100.12049482205.185.216.1080TCPpcapanalyzer
12
2019-08-09T06:14:36.027135-0700377366314069651flow192.168.100.12058001192.168.100.253UDPpcapanalyzer
13
2019-08-09T06:14:36.027135-07001506365039605593flow192.168.100.1204945689.46.105.91443TCPpcapanalyzer
14
2019-08-09T06:14:36.027135-0700406907098269570flow192.168.100.120138192.168.100.255138UDPpcapanalyzer
File 2
Showing 1-2 of 2 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-09T06:11:56.419797-0700205.185.216.10192.168.100.120/msdownload/update/v3/static/trustedr/en/authrootstl.cabMicrosoft Cabinet archive data, 58000 bytes, 1 file58000
2
2019-08-09T06:11:56.558854-0700205.185.216.10192.168.100.120/msdownload/update/v3/static/trustedr/en/F373B387065A28848AF2F34ACE192BDDC78E9CAC.crtdata1471

Comments(not set)

Update Download PCAP Delete