cybercon.pcap

MD5704929870708b0b167f6b0c09d77e0d4
Submission Date2019-10-09 20:27:46
Tags(not set)
Alert 3
Showing 1-3 of 3 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2017-05-25T08:10:06.986002-0700192.168.0.11209.165.202.133ET INFO Executable Download from dotted-quad Host*
2
2017-05-25T08:10:06.986002-0700192.168.0.11209.165.202.133ET INFO Wget Request for Executable*
3
2017-05-25T08:10:06.998496-0700209.165.202.133192.168.0.11ET POLICY PE EXE or DLL Windows file download HTTP*
DNS 0
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
No results found.
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 1
Showing 1-1 of 1 item.
#
TimestampSourceHostnamePortMethodURLStatus
1
2017-05-25T08:10:07.016022-0700192.168.0.11209.165.202.1336666GET/wannaCry.exe200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 1
Showing 1-1 of 1 item.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2017-05-25T08:10:06.980337-07001455272154297718flow192.168.0.1137982209.165.202.1336666TCPpcapanalyzer
File 1
Showing 1-1 of 1 item.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2017-05-25T08:10:07.016022-0700209.165.202.133192.168.0.11/wannaCry.exePE32 executable (GUI) Intel 80386, for MS Windows3514368

Comments(not set)

Update Download PCAP Delete