Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| www.teramind.co | 104.22.19.138 | |
| ocsp.digicert.com |
CNAME
ocsp.edge.digicert.com
CNAME
fp2e7a.wpc.phicdn.net
|
152.195.38.76 |
| rt.teramind.co | 132.226.193.252 |
- TCP Requests
-
-
192.168.56.101:49166 104.22.18.138:443www.teramind.co
-
192.168.56.101:49167 104.22.18.138:443www.teramind.co
-
192.168.56.101:49170 104.22.18.138:443www.teramind.co
-
192.168.56.101:49171 104.22.18.138:443www.teramind.co
-
192.168.56.101:49158 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49160 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49162 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49164 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49166 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49168 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49169 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49171 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49173 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49175 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49177 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49178 132.226.193.252:443rt.teramind.co
-
192.168.56.101:49165 152.195.38.76:80ocsp.digicert.com
-
192.168.56.101:49175 152.195.38.76:80ocsp.digicert.com
-
- UDP Requests
-
-
192.168.56.101:53004 164.124.101.2:53
-
192.168.56.101:54148 164.124.101.2:53
-
192.168.56.101:55146 164.124.101.2:53
-
192.168.56.101:59002 164.124.101.2:53
-
192.168.56.101:62118 164.124.101.2:53
-
192.168.56.101:137 192.168.56.255:137
-
192.168.56.101:138 192.168.56.255:138
-
192.168.56.101:62121 239.255.255.250:1900
-
GET
200
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAewQY2lHhSMMxu83rcTgyM%3D
REQUEST
RESPONSE
BODY
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAewQY2lHhSMMxu83rcTgyM%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.digicert.com
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2109
Cache-Control: max-age=142164
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:49:14 GMT
Etag: "64207631-1d7"
Expires: Tue, 28 Mar 2023 17:18:38 GMT
Last-Modified: Sun, 26 Mar 2023 16:43:29 GMT
Server: ECAcc (tkc/BECE)
X-Cache: HIT
Content-Length: 471
GET
200
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTDZGCsCkDHH%2BXwJVKt4ohdOTWBUQQUy1yTroib%2FkNvVlBSAm14%2FKzhsVoCEA1e%2BQMDwigDd9%2FgTXTiCGE%3D
REQUEST
RESPONSE
BODY
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBTDZGCsCkDHH%2BXwJVKt4ohdOTWBUQQUy1yTroib%2FkNvVlBSAm14%2FKzhsVoCEA1e%2BQMDwigDd9%2FgTXTiCGE%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.digicert.com
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2188
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:49:18 GMT
Last-Modified: Mon, 27 Mar 2023 01:12:50 GMT
Server: ECAcc (tkc/BEBA)
X-Cache: HIT
Content-Length: 471
GET
200
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAPxtOFfOoLxFJZ4s9fYR1w%3D
REQUEST
RESPONSE
BODY
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAPxtOFfOoLxFJZ4s9fYR1w%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.digicert.com
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2307
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:49:26 GMT
Last-Modified: Mon, 27 Mar 2023 01:10:59 GMT
Server: ECAcc (tkc/BEC9)
X-Cache: HIT
Content-Length: 471
GET
200
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSPwl%2BrBFlJbvzLXU1bGW08VysJ2wQUj%2Bh%2B8G0yagAFI8dwl2o6kP9r6tQCEAP7r%2BFw4Evn1FZeRLt68uo%3D
REQUEST
RESPONSE
BODY
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBSPwl%2BrBFlJbvzLXU1bGW08VysJ2wQUj%2Bh%2B8G0yagAFI8dwl2o6kP9r6tQCEAP7r%2BFw4Evn1FZeRLt68uo%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.digicert.com
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2842
Cache-Control: max-age=121263
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:49:30 GMT
Etag: "642021bf-1d7"
Expires: Tue, 28 Mar 2023 11:30:33 GMT
Last-Modified: Sun, 26 Mar 2023 10:43:11 GMT
Server: ECAcc (tkc/BE8E)
X-Cache: HIT
Content-Length: 471
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLS 1.2 192.168.56.101:49167 104.22.18.138:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49170 104.22.18.138:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49168 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49162 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49169 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49175 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49158 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49168 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49166 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49169 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49166 104.22.18.138:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49171 104.22.18.138:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49160 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49173 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49171 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49164 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49177 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
|
TLS 1.2 192.168.56.101:49178 132.226.193.252:443 |
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 | CN=*.teramind.co | 9b:5e:3b:90:71:6a:2a:ca:24:29:25:70:35:a4:61:ed:26:fc:6c:b6 |
Snort Alerts
No Snort Alerts