Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| gservice-node.io | 104.26.8.139 |
POST
200
http://gservice-node.io/c2conf
REQUEST
RESPONSE
BODY
POST /c2conf HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: gservice-node.io
Content-Length: 18
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Jun 2023 22:33:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.2.7
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=3519pleikjlsui1trov8ht6ah5; expires=Fri, 13 Oct 2023 16:20:20 GMT; Max-Age=9999999; path=/
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJ3MvrlgvnT%2FO%2Fj2xb3LYWv9AkBYQXGH4nFOo%2FsE0ZP3OFLtr0UbLLFG%2BYz4xs%2B2Nsh4KXcsA9%2B5R4jJCpoSpLIjONPBiqjUSq5WmZDHsLVEt5l9DkC%2FQorOWyg%2Fto672j0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7d9f3c2ecf860a46-KIX
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts