Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| matixx.xyz | 212.192.241.97 |
- UDP Requests
-
-
192.168.56.101:61479 164.124.101.2:53
-
192.168.56.101:62324 164.124.101.2:53
-
192.168.56.101:137 192.168.56.255:137
-
192.168.56.101:138 192.168.56.255:138
-
192.168.56.101:49152 239.255.255.250:3702
-
192.168.56.101:62327 239.255.255.250:1900
-
192.168.56.101:62329 239.255.255.250:3702
-
192.168.56.101:62331 239.255.255.250:3702
-
192.168.56.101:62333 239.255.255.250:3702
-
52.231.114.183:123 192.168.56.101:123
-
GET
302
http://matixx.xyz/panel/
REQUEST
RESPONSE
BODY
GET /panel/ HTTP/1.1
Host: matixx.xyz
Connection: Keep-Alive
HTTP/1.1 302 Moved Temporarily
Date: Fri, 11 Jun 2021 03:27:52 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=vki24eb6shenabh6msce2eq0h1; path=/
Location: login.php
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
200
http://matixx.xyz/panel/login.php
REQUEST
RESPONSE
BODY
GET /panel/login.php HTTP/1.1
Host: matixx.xyz
HTTP/1.1 200 OK
Date: Fri, 11 Jun 2021 03:27:53 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=ata30kr65cleketg0akff84j37; path=/
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
302
http://matixx.xyz/panel/
REQUEST
RESPONSE
BODY
GET /panel/ HTTP/1.1
Host: matixx.xyz
HTTP/1.1 302 Moved Temporarily
Date: Fri, 11 Jun 2021 03:28:14 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=2ufr5nkmo5j5atmcdo1j2dv5k4; path=/
Location: login.php
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
200
http://matixx.xyz/panel/login.php
REQUEST
RESPONSE
BODY
GET /panel/login.php HTTP/1.1
Host: matixx.xyz
HTTP/1.1 200 OK
Date: Fri, 11 Jun 2021 03:28:14 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=41i02jm3t72va5t1h70p0p0s85; path=/
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
302
http://matixx.xyz/panel/
REQUEST
RESPONSE
BODY
GET /panel/ HTTP/1.1
Host: matixx.xyz
HTTP/1.1 302 Moved Temporarily
Date: Fri, 11 Jun 2021 03:28:35 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=90m2njblpr7ics6emmr7ku7lk3; path=/
Location: login.php
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
200
http://matixx.xyz/panel/login.php
REQUEST
RESPONSE
BODY
GET /panel/login.php HTTP/1.1
Host: matixx.xyz
HTTP/1.1 200 OK
Date: Fri, 11 Jun 2021 03:28:36 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=j9ct7crngmb7q625bm0hc3p503; path=/
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
302
http://matixx.xyz/panel/
REQUEST
RESPONSE
BODY
GET /panel/ HTTP/1.1
Host: matixx.xyz
HTTP/1.1 302 Moved Temporarily
Date: Fri, 11 Jun 2021 03:28:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=mgnlf8pdvgi8n4pp9espiijpd3; path=/
Location: login.php
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
200
http://matixx.xyz/panel/login.php
REQUEST
RESPONSE
BODY
GET /panel/login.php HTTP/1.1
Host: matixx.xyz
HTTP/1.1 200 OK
Date: Fri, 11 Jun 2021 03:28:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=gveogan3pp9u2en0qpr4auh9c4; path=/
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
302
http://matixx.xyz/panel/
REQUEST
RESPONSE
BODY
GET /panel/ HTTP/1.1
Host: matixx.xyz
HTTP/1.1 302 Moved Temporarily
Date: Fri, 11 Jun 2021 03:29:18 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=9ig5agua7otg2qbk1qls5aq4i3; path=/
Location: login.php
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET
200
http://matixx.xyz/panel/login.php
REQUEST
RESPONSE
BODY
GET /panel/login.php HTTP/1.1
Host: matixx.xyz
HTTP/1.1 200 OK
Date: Fri, 11 Jun 2021 03:29:19 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=q1epksni1805mjjoio674n8hf7; path=/
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
| Flow | SID | Signature | Category |
|---|---|---|---|
| TCP 192.168.56.101:49203 -> 212.192.241.97:80 | 2031088 | ET HUNTING Request to .XYZ Domain with Minimal Headers | Potentially Bad Traffic |
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts