Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| meettrust.in | 192.185.129.109 | |
| aqissarafood.com.my | 103.27.74.73 | |
| radiocaca.top | 103.221.220.15 | |
| x1.i.lencr.org | 104.74.211.103 |
- TCP Requests
-
-
192.168.56.103:49175 103.221.220.15:443radiocaca.top
-
192.168.56.103:49176 103.221.220.15:443radiocaca.top
-
192.168.56.103:49177 103.221.220.15:443radiocaca.top
-
192.168.56.103:49172 103.27.74.73:443aqissarafood.com.my
-
192.168.56.103:49174 104.74.168.254:80x1.i.lencr.org
-
192.168.56.103:49168 192.185.129.109:443meettrust.in
-
192.168.56.103:49169 192.185.129.109:443meettrust.in
-
192.168.56.103:49170 192.185.129.109:443meettrust.in
-
- UDP Requests
-
-
192.168.56.103:53893 164.124.101.2:53
-
192.168.56.103:56357 164.124.101.2:53
-
192.168.56.103:58465 164.124.101.2:53
-
192.168.56.103:63128 164.124.101.2:53
-
192.168.56.103:137 192.168.56.255:137
-
192.168.56.103:138 192.168.56.255:138
-
192.168.56.103:49152 239.255.255.250:3702
-
192.168.56.103:49168 239.255.255.250:1900
-
192.168.56.103:49170 239.255.255.250:3702
-
192.168.56.103:49172 239.255.255.250:3702
-
192.168.56.103:58466 239.255.255.250:3702
-
GET
200
http://x1.i.lencr.org/
REQUEST
RESPONSE
BODY
GET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: x1.i.lencr.org
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/pkix-cert
Last-Modified: Fri, 19 Jan 2018 23:38:04 GMT
ETag: "5a62815c-56f"
Content-Disposition: attachment; filename="ISRG Root X1.der"
Cache-Control: max-age=78591
Expires: Thu, 21 Oct 2021 04:39:34 GMT
Date: Wed, 20 Oct 2021 06:49:43 GMT
Content-Length: 1391
Connection: keep-alive
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.103:49172 103.27.74.73:443 |
C=US, O=Let's Encrypt, CN=R3 | CN=*.anamuslimpreschool.com | 31:f5:04:25:4c:24:41:84:cf:0d:b6:1f:75:76:e9:8f:23:f0:c9:ea |
Snort Alerts
No Snort Alerts