NetWork | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.23 02:09
Name.exe
09.23 11:09
wcxoplwq.exe
09.23 11:09
66f00f515201d_otr.exe#...
09.23 11:09
Journal.exe
09.23 11:09
PI No.1070034483.exe
09.23 11:09
66f011901da27_crypted....
09.23 11:09
66f063cce5470_crypted....
09.23 11:09
notebyx.exe
09.23 10:09
Uploader.exe
09.23 10:09
Trial.bat

Latest News
09.23 02:09
Hands-on With New iPho...
09.23 02:09
한국창업지원협회, 2024 프랜차이즈 리...
09.23 02:09
아주자동차대학교, '2024 주니어 AM...
09.23 01:09
서산우리축산물백화점, 2024년 3분기 ...
09.23 01:09
KISA, 19개국 침해사고대응팀에 대한...
09.23 01:09
2024년 아파트 보안 자율점검 일반교육 안내
09.23 12:09
베베스킨, 신제품 아기 바스앤샴푸&amp...
09.23 12:09
유창강건, KS 인증 자재·마감재 판매 ...
09.23 12:09
에듀피디, 부산항보안공사 청원경찰 필기시...
09.23 12:09
Indian Markets Calm Ma...

NetWork | ZeroBOX

IP Address	Status	Action
104.37.187.182	Active	Moloch
139.5.177.32	Active	Moloch
164.124.101.2	Active	Moloch

Name	Response	Post-Analysis Lookup
No hosts contacted.

TCP Requests
- 192.168.56.103:49229 104.37.187.182:80
- 192.168.56.103:49230 104.37.187.182:80

UDP Requests

GET 200 http://104.37.187.182/xpxmr.txt

GET 200 http://104.37.187.182/ok/wpd.html

GET 200 http://104.37.187.182/wpdmd5.txt

GET 200 http://104.37.187.182/wpdtest.txt

GET 200 http://104.37.187.182/ver.txt

GET 200 http://104.37.187.182/shellver.txt

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

Flow	SID	Signature	Category
TCP 192.168.56.103:49758 -> 192.168.57.17:1433	2001583	ET SCAN Behavioral Unusual Port 1433 traffic Potential Scan or Infection	Misc activity
TCP 192.168.56.103:49844 -> 192.168.57.51:1433	2001583	ET SCAN Behavioral Unusual Port 1433 traffic Potential Scan or Infection	Misc activity
TCP 192.168.56.103:50021 -> 192.168.57.100:445	2001569	ET SCAN Behavioral Unusual Port 445 traffic Potential Scan or Infection	Misc activity

Suricata TLS

No Suricata TLS

Snort Alerts

No Snort Alerts