popup
NetWork | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Network Analysis

Download pcap
Hosts 7 DNS 7 TCP 7 UDP 15 HTTP 0 ICMP 0 IRC 0 Suricata Snort
IP Address Status Action
164.124.101.2 Active Moloch
35.244.181.201 Active Moloch
99.86.144.100 Active Moloch
99.86.144.46 Active Moloch
99.86.144.61 Active Moloch
99.86.144.82 Active Moloch
99.86.202.75 Active Moloch
Name Response Post-Analysis Lookup
d2js2viceajwla.cloudfront.net
AAAA 2600:9000:2139:e400:11:6feb:6f80:93a1
AAAA 2600:9000:2139:d800:11:6feb:6f80:93a1
AAAA 2600:9000:2139:6a00:11:6feb:6f80:93a1
AAAA 2600:9000:2139:b000:11:6feb:6f80:93a1
AAAA 2600:9000:2139:ee00:11:6feb:6f80:93a1
AAAA 2600:9000:2139:4e00:11:6feb:6f80:93a1
AAAA 2600:9000:2139:e600:11:6feb:6f80:93a1
AAAA 2600:9000:2139:1600:11:6feb:6f80:93a1
99.86.202.75
aus.thunderbird.net
A 99.86.202.23
A 99.86.202.125
CNAME d2js2viceajwla.cloudfront.net
A 99.86.202.67
A 99.86.202.75
99.86.202.125
WYEnXVSECgshKtHcubAXXu.WYEnXVSECgshKtHcubAXXu
prod.balrog.prod.cloudops.mozgcp.net
A 35.244.181.201
35.244.181.201
d2js2viceajwla.cloudfront.net
A 99.86.202.67
A 99.86.202.125
A 99.86.202.23
A 99.86.202.75
99.86.202.75
aus5.mozilla.org
A 35.244.181.201
CNAME balrog-aus5.r53-2.services.mozilla.com
CNAME prod.balrog.prod.cloudops.mozgcp.net
35.244.181.201
prod.balrog.prod.cloudops.mozgcp.net 35.244.181.201

No traffic

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

No Suricata Alerts

Suricata TLS

Flow Issuer Subject Fingerprint
TLS 1.2
192.168.56.102:49334
99.86.202.75:443 		C=US, O=Let's Encrypt, CN=R3 CN=thunderbird.net dd:92:a0:f3:c5:f2:3a:c7:42:66:30:75:8a:b3:b3:03:6b:8c:df:9d
TLS 1.2
192.168.56.102:49335
35.244.181.201:443 		C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA C=US, ST=California, L=Mountain View, O=Mozilla Corporation, CN=aus5.mozilla.org 37:1a:8a:6e:ae:e7:b7:ae:1f:a9:c0:87:53:e5:a0:94:ef:0b:de:0c

Snort Alerts

No Snort Alerts