2019_08_04_192312.pcap

MD5874372cc8da83423dc5cec780d7e6e50
Submission Date2019-08-22 01:36:48
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 0
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
No results found.
TLS 26
Showing 1-20 of 26 items.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2019-08-04T06:53:12.352127-070010.8.0.134.98.124.58TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
2
2019-08-04T06:53:12.559501-070010.8.0.131.13.79.10TLS 1.2(not set)
3
2019-08-04T06:53:13.337679-070010.8.0.1139.162.1.146TLS 1.2C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
4
2019-08-04T06:53:12.852850-070010.8.0.113.88.181.35TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
5
2019-08-04T06:53:12.852879-070010.8.0.1172.217.167.174TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
6
2019-08-04T06:53:16.316806-070010.8.0.1140.205.252.4TLS 1.2C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
7
2019-08-04T06:53:18.989441-070010.8.0.174.125.68.188TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
8
2019-08-04T06:53:15.439249-070010.8.0.1216.58.203.163TLS 1.2(not set)
9
2019-08-04T06:53:29.805983-070010.8.0.1192.48.236.11TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
10
2019-08-04T06:53:31.931281-070010.8.0.1172.217.26.226TLS 1.2(not set)
11
2019-08-04T06:56:04.504923-070010.8.0.131.13.79.53TLS 1.2(not set)
12
2019-08-04T06:54:14.724166-070010.8.0.1172.217.26.234TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
13
2019-08-04T06:54:19.953053-070010.8.0.1172.217.166.42TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
14
2019-08-04T06:55:51.209173-070010.8.0.131.13.79.18TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
15
2019-08-04T06:55:52.647945-070010.8.0.1172.217.166.46TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
16
2019-08-04T06:54:07.492948-070010.8.0.152.222.186.229TLS 1.2C=US, O=Amazon, OU=Server CA 1B, CN=Amazon
17
2019-08-04T06:54:14.724683-070010.8.0.1172.217.26.234TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
18
2019-08-04T06:54:45.774053-070010.8.0.131.13.79.53TLS 1.2(not set)
19
2019-08-04T06:55:51.209207-070010.8.0.131.13.79.18TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
20
2019-08-04T06:55:52.648013-070010.8.0.135.244.184.98TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert ECC Secure Server CA
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 4
Showing 1-4 of 4 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-04T06:54:15.351605-070010.8.0.1mpush-api.aliyun.com80POST/config200
2
2019-08-04T06:53:13.608719-070010.8.0.1mpush-api.aliyun.com80POST/config200
3
2019-08-04T06:53:29.110393-070010.8.0.1mpush-api.aliyun.com80POST/config200
4
2019-08-04T06:56:31.665117-070010.8.0.1mpush-api.aliyun.com80POST/config200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 39
Showing 1-20 of 39 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-04T06:56:54.935382-0700623074718838449flow10.8.0.142457172.217.167.174443TCPpcapanalyzer
2
2019-08-04T06:56:54.935382-0700520768598183527flow10.141.246.1873830854.243.226.197443TCPpcapanalyzer
3
2019-08-04T06:56:54.935382-07001017408551287933flow10.8.0.145192140.205.252.4443TCPpcapanalyzer
4
2019-08-04T06:56:54.935382-070038585504431908flow10.8.0.14984734.98.124.58443TCPpcapanalyzer
5
2019-08-04T06:56:54.935382-07001461881838871665flow10.141.246.1874811147.246.53.780TCPpcapanalyzer
6
2019-08-04T06:56:54.935382-07001888024191887311flow10.8.0.148688140.205.135.380TCPpcapanalyzer
7
2019-08-04T06:56:54.935382-0700230347204594934flow10.141.246.1874927088.198.46.237443TCPpcapanalyzer
8
2019-08-04T06:56:54.935382-07001407408761645746flow10.8.0.145194140.205.252.4443TCPpcapanalyzer
9
2019-08-04T06:56:54.935382-07001831639875727732flow10.8.0.138639216.58.203.170443TCPpcapanalyzer
10
2019-08-04T06:56:54.935382-0700856196955105279flow10.8.0.147437172.217.26.226443TCPpcapanalyzer
11
2019-08-04T06:56:54.935382-0700302841967666815flow10.8.0.14558031.13.79.18443TCPpcapanalyzer
12
2019-08-04T06:56:54.935382-0700593220404754764flow10.8.0.14575552.222.186.229443TCPpcapanalyzer
13
2019-08-04T06:56:54.935382-0700875966689439317flow10.8.0.147435172.217.26.226443TCPpcapanalyzer
14
2019-08-04T06:56:54.935382-07001298333782568669flow10.8.0.140170172.217.166.46443TCPpcapanalyzer
15
2019-08-04T06:56:54.935382-07002155978621915282flow10.8.0.14558231.13.79.18443TCPpcapanalyzer
16
2019-08-04T06:56:54.935382-07001594377277861117flow10.8.0.147924139.162.1.146443TCPpcapanalyzer
17
2019-08-04T06:56:54.935382-0700187663832187014flow10.8.0.146093106.11.62.1580TCPpcapanalyzer
18
2019-08-04T06:56:54.935382-07002017440158772016flow10.8.0.142381172.217.166.33443TCPpcapanalyzer
19
2019-08-04T06:56:54.935382-0700611345167204150flow10.8.0.137519172.217.26.234443TCPpcapanalyzer
20
2019-08-04T06:56:54.935382-0700191168516638270flow10.8.0.137518172.217.26.234443TCPpcapanalyzer
File 8
Showing 1-8 of 8 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-04T06:54:14.171649-070010.8.0.1140.205.135.3/configASCII text219
2
2019-08-04T06:53:12.652848-070010.8.0.1140.205.135.3/configASCII text219
3
2019-08-04T06:54:15.351605-0700140.205.135.310.8.0.1/configASCII text, with no line terminators94
4
2019-08-04T06:53:13.608719-0700140.205.135.310.8.0.1/configASCII text, with no line terminators94
5
2019-08-04T06:53:28.636846-070010.8.0.1140.205.135.3/configASCII text219
6
2019-08-04T06:53:29.110393-0700140.205.135.310.8.0.1/configASCII text, with no line terminators94
7
2019-08-04T06:56:30.642901-070010.8.0.1106.11.62.15/configASCII text219
8
2019-08-04T06:56:31.665117-0700106.11.62.1510.8.0.1/configASCII text, with no line terminators94

Comments(not set)

Update Download PCAP Delete