2019_09_24_070432.pcap

MD54286ac36e9d25048f7053847241fa53d
Submission Date2019-09-24 04:58:30
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 0
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
No results found.
TLS 26
Showing 1-20 of 26 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-09-23T22:04:33.876540-070010.8.0.152.28.242.253TLS 1.2sdk.adtiming.com
2
2019-09-23T22:04:37.655325-070010.8.0.180.158.20.104TLS 1.2configserver-dre.platform.hicloud.com
3
2019-09-23T22:04:38.200712-070010.8.0.180.158.20.104TLS 1.2configserver-dre.platform.hicloud.com
4
2019-09-23T22:04:38.380120-070010.8.0.180.158.20.104TLS 1.2configserver-dre.platform.hicloud.com
5
2019-09-23T22:04:38.501058-070010.8.0.1216.58.207.35TLS 1.2connectivitycheck.gstatic.com
6
2019-09-23T22:04:37.930643-070010.8.0.180.158.20.104TLS 1.2configserver-dre.platform.hicloud.com
7
2019-09-23T22:04:38.699904-070010.8.0.180.158.20.104TLS 1.2configserver-dre.platform.hicloud.com
8
2019-09-23T22:04:33.935158-070010.8.0.152.28.242.253TLS 1.2sdk.adtiming.com
9
2019-09-23T22:04:37.401685-070010.8.0.174.125.133.188TLS 1.2mtalk.google.com
10
2019-09-23T22:05:41.212092-070010.8.0.182.145.217.121TLS 1.2ofa-sub.osp.opera.software
11
2019-09-23T22:05:41.380636-070010.8.0.152.209.240.245TLS 1.2t.appsflyer.com
12
2019-09-23T22:05:42.157707-070010.8.0.1172.217.22.68TLS 1.2www.google.com
13
2019-09-23T22:05:42.295115-070010.8.0.1185.26.182.94TLS 1.2sitecheck2.opera.com
14
2019-09-23T22:05:42.966523-070010.8.0.1107.167.123.6TLS 1.2news-us.feednews.com
15
2019-09-23T22:04:38.969630-070010.8.0.180.158.20.104TLS 1.2configserver-dre.platform.hicloud.com
16
2019-09-23T22:05:02.364281-070010.8.0.123.53.174.166TLS 1.2a.applovin.com
17
2019-09-23T22:05:02.714746-070010.8.0.123.53.174.166TLS 1.2a.applovin.com
18
2019-09-23T22:05:13.350719-070010.8.0.113.225.78.110TLS 1.2d.applvn.com
19
2019-09-23T22:05:40.695520-070010.8.0.1172.217.22.78TLS 1.2android.clients.google.com
20
2019-09-23T22:05:41.323308-070010.8.0.1185.26.182.112TLS 1.2xml.opera.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 10
Showing 1-10 of 10 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-09-23T22:04:32.520594-070010.8.0.1connectivitycheck.gstatic.com80GET/generate_204204
2
2019-09-23T22:04:32.520616-070010.8.0.1www.google.com80GET/200
3
2019-09-23T22:04:34.301402-070010.8.0.1logger.zcoup.com80POST/android/v2/click_redirect200
4
2019-09-23T22:05:42.681595-070010.8.0.1thumbnails.opera.com80POSThttp://thumbnails.opera.com:80/200
5
2019-09-23T22:04:39.355375-070010.8.0.1ad.api.kaffnet.com80GET/adserver/v1/sdk/installreport/get?country=DE&app_version=2.0.6.5&natural=0&gaid=c50a1063-9a3c-4d7d-971a-4b0742dd7a44&os_version=8.0.0&language=de&version=10&token=82f3e809-1386-f516-d09c-4671c5eb6ec5&pkg_name=jp.co.taosoftware.android.packetcapture&sdk_version=4.3.0.5&imei=&app_pkg=com.estrongs.android.taskmanager&network_type=1&event=0&aid=795991e818249adc&add_time=1569301478923&timestamp=1569301478923200
6
2019-09-23T22:04:39.406542-070010.8.0.1sdk.api.kaffnet.com80POST/v4/cut_v3.php400
7
2019-09-23T22:04:39.354785-070010.8.0.1ad.api.kaffnet.com80GET/adserver/v1/sdk/installreport/get?country=DE&app_version=2.0.6.5&gaid=c50a1063-9a3c-4d7d-971a-4b0742dd7a44&os_version=8.0.0&language=de&token=82f3e809-1386-f516-d09c-4671c5eb6ec5&pkg_name=com.wireshark.wiresharkevents&sdk_version=4.3.0.5&imei=&app_pkg=com.estrongs.android.taskmanager&network_type=1&event=1&aid=795991e818249adc&add_time=1569301478848&timestamp=1569301478848200
8
2019-09-23T22:04:39.406482-070010.8.0.1rts.mobula.sdk.duapps.com80POST/orts/rp?h=1794&w=1080&model=WAS-LX1A&vendor=HUAWEI&sdk=26&dpi=480&sv=1.0.9.33&svn=SELF-1.0.9.33&pkg=com.estrongs.android.taskmanager&v=47&vn=2.0.6.5&tk=OcOk377XbtXup%2FNVr8OIUw%3D%3D&op=26203&goid=c50a1063-9a3c-4d7d-971a-4b0742dd7a44&locale=de_DE&ntt=WIFI&ls=659f0f138b6be587d45652353829cdeb&aid=795991e818249adc&mdu=adsdk&rv=1.0&ts=1569301478921&seq=10&stype=native&s=48a12d76e1454eee032953544c5c602f200
9
2019-09-23T22:04:39.708624-070010.8.0.1rts.mobula.sdk.duapps.com80POST/orts/rp?h=1794&w=1080&model=WAS-LX1A&vendor=HUAWEI&sdk=26&dpi=480&sv=1.0.9.33&svn=SELF-1.0.9.33&pkg=com.estrongs.android.taskmanager&v=47&vn=2.0.6.5&tk=OcOk377XbtXup%2FNVr8OIUw%3D%3D&op=26203&goid=c50a1063-9a3c-4d7d-971a-4b0742dd7a44&locale=de_DE&ntt=WIFI&ls=659f0f138b6be587d45652353829cdeb&aid=795991e818249adc&mdu=adsdk&rv=1.0&ts=1569301479461&seq=11&stype=native&s=d743304a6319c699204fb55ab6b9c4f2200
10
2019-09-23T22:05:43.773547-070010.8.0.1pasta.estaskmanager.duapps.com80POST/api/data?token=8f9f1901d639ac7056a4406e0f92637ab1968e35a82f6c7374a074e6e6071ebc&tk=OcOk377XbtXup%2FNVr8OIUw%3D%3D&sv=hw-2.4.0(not set)
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 43
Showing 1-20 of 43 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-09-23T22:04:32.520616-0700645201326550249flow192.168.0.1648254160.44.205.1635223TCPpcapanalyzer
2
2019-09-23T22:05:43.773547-07001268611534968607flow10.8.0.14754880.158.20.104443TCPpcapanalyzer
3
2019-09-23T22:05:43.773547-0700425204511731324flow192.168.0.164800680.252.91.53443TCPpcapanalyzer
4
2019-09-23T22:05:43.773547-0700286193602192963flow10.8.0.14031223.53.174.166443TCPpcapanalyzer
5
2019-09-23T22:05:43.773547-0700989906816221197flow10.8.0.156718216.58.206.19443TCPpcapanalyzer
6
2019-09-23T22:05:43.773547-0700153242887912709flow10.8.0.15688074.125.133.1885228TCPpcapanalyzer
7
2019-09-23T22:05:43.773547-070014017232267621flow10.8.0.153946185.26.182.94443TCPpcapanalyzer
8
2019-09-23T22:05:43.773547-07002130551346009762flow10.8.0.15161052.212.245.168443TCPpcapanalyzer
9
2019-09-23T22:05:43.773547-07001717530106708135flow10.8.0.14702452.220.126.8080TCPpcapanalyzer
10
2019-09-23T22:05:43.773547-0700171496498558585flow10.8.0.11900239.255.255.2501900UDPpcapanalyzer
11
2019-09-23T22:05:43.773547-07001728117200718971flow10.8.0.14977852.28.242.253443TCPpcapanalyzer
12
2019-09-23T22:05:43.773547-0700321055854320484flow10.8.0.138104107.167.123.6443TCPpcapanalyzer
13
2019-09-23T22:05:43.773547-07001166988313801053flow10.8.0.15644213.251.34.24880TCPpcapanalyzer
14
2019-09-23T22:05:43.773547-07001885841284749430flow10.8.0.15961652.220.82.20280TCPpcapanalyzer
15
2019-09-23T22:05:43.773547-07001464440568474045flow10.8.0.143232172.217.22.6880TCPpcapanalyzer
16
2019-09-23T22:05:43.773547-0700482576685321528flow10.8.0.138806182.61.183.18580TCPpcapanalyzer
17
2019-09-23T22:05:43.773547-07001753878414826126flow10.8.0.14752880.158.20.104443TCPpcapanalyzer
18
2019-09-23T22:05:43.773547-07002183546943170421flow10.8.0.14752480.158.20.104443TCPpcapanalyzer
19
2019-09-23T22:05:43.773547-0700780187858277956flow10.8.0.14602282.145.209.25380TCPpcapanalyzer
20
2019-09-23T22:05:43.773547-0700645201326579630flow192.168.0.1648254160.44.205.1635223TCPpcapanalyzer
File 11
Showing 1-11 of 11 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-09-23T22:04:32.520616-0700172.217.22.6810.8.0.1/HTML document, ISO-8859 text, with very long lines32768
2
2019-09-23T22:04:33.877645-070010.8.0.152.220.82.202/android/v2/click_redirectASCII text, with no line terminators194
3
2019-09-23T22:05:42.620008-070010.8.0.182.145.209.253/data16
4
2019-09-23T22:05:42.681595-070082.145.209.25310.8.0.1/data335
5
2019-09-23T22:04:39.031185-070010.8.0.152.220.126.80/v4/cut_v3.phpASCII text, with CRLF line terminators352
6
2019-09-23T22:04:39.120955-070010.8.0.1182.61.183.185/api/datadata847
7
2019-09-23T22:04:38.969946-070010.8.0.152.35.117.48/orts/rpgzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)91
8
2019-09-23T22:04:39.406482-070052.35.117.4810.8.0.1/orts/rpASCII text83
9
2019-09-23T22:04:39.507205-070010.8.0.152.35.117.48/orts/rpgzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)238
10
2019-09-23T22:04:39.406542-070052.220.126.8010.8.0.1/v4/cut_v3.phpASCII text, with no line terminators24
11
2019-09-23T22:04:39.708624-070052.35.117.4810.8.0.1/orts/rpASCII text83

Comments(not set)

Update Download PCAP Delete