Network Analysis
- TCP Requests
-
-
131.153.76.130:3333 192.168.56.102:49808
-
192.168.56.102:49863 104.23.98.190:443pastebin.com
-
192.168.56.102:49860 131.153.76.130:3333pool.hashvault.pro
-
192.168.56.102:49797 172.217.25.14:443
-
192.168.56.102:49848 193.218.118.85:16020niogem1171.freedynamicdns.org
-
192.168.56.102:49850 193.218.118.85:16039niogem1171.freedynamicdns.org
-
192.168.56.102:49864 193.218.118.85:11061niogem1171.freedynamicdns.org
-
192.168.56.102:49865 193.218.118.85:11069niogem1171.freedynamicdns.org
-
192.168.56.102:49849 34.126.93.163:80
-
192.168.56.102:49854 34.126.93.163:80
-
- UDP Requests
-
-
192.168.56.102:50538 164.124.101.2:53
-
192.168.56.102:50839 164.124.101.2:53
-
192.168.56.102:51857 164.124.101.2:53
-
192.168.56.102:54221 164.124.101.2:53
-
192.168.56.102:54660 164.124.101.2:53
-
192.168.56.102:55957 164.124.101.2:53
-
192.168.56.102:57660 164.124.101.2:53
-
192.168.56.102:61459 164.124.101.2:53
-
192.168.56.102:61998 164.124.101.2:53
-
192.168.56.102:62039 164.124.101.2:53
-
192.168.56.102:62461 164.124.101.2:53
-
192.168.56.102:137 192.168.56.255:137
-
192.168.56.102:138 192.168.56.255:138
-
192.168.56.102:49152 239.255.255.250:3702
-
192.168.56.102:56752 239.255.255.250:1900
-
192.168.56.102:56754 239.255.255.250:3702
-
192.168.56.102:56756 239.255.255.250:3702
-
192.168.56.102:56758 239.255.255.250:3702
-
GET
0
https://pastebin.com/raw/nEZ87Pwx
REQUEST
RESPONSE
BODY
GET /raw/nEZ87Pwx HTTP/1.1
Host: pastebin.com
Connection: Keep-Alive
GET
200
http://34.126.93.163/xm/win.com
REQUEST
RESPONSE
BODY
GET /xm/win.com HTTP/1.1
Host: 34.126.93.163
Connection: Keep-Alive
HTTP/1.1 200 OK
Date: Mon, 12 Apr 2021 01:51:52 GMT
Server: Apache/2.4.39 (Unix)
Last-Modified: Sun, 07 Mar 2021 02:48:49 GMT
ETag: "faead-5bce95b533299"
Accept-Ranges: bytes
Content-Length: 1027757
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-msdownload
GET
200
http://34.126.93.163/xm/64a1.com
REQUEST
RESPONSE
BODY
GET /xm/64a1.com HTTP/1.1
Host: 34.126.93.163
Connection: Keep-Alive
HTTP/1.1 200 OK
Date: Mon, 12 Apr 2021 01:51:54 GMT
Server: Apache/2.4.39 (Unix)
Last-Modified: Mon, 05 Apr 2021 15:11:05 GMT
ETag: "29c4f2-5bf3b1b4cb0ce"
Accept-Ranges: bytes
Content-Length: 2737394
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-msdownload
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts