popup
NetWork | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Network Analysis

Download pcap
Hosts 1 DNS 0 TCP 2 UDP 3 HTTP(S) 5 ICMP 0 IRC 0 Suricata Snort
IP Address Status Action
91.92.255.73 Active Moloch
Name Response Post-Analysis Lookup
No hosts contacted.
GET 200 http://91.92.255.73/v9/qlmz.php?mfgb=6
REQUEST
RESPONSE
BODY 

            

        


    



        
            

    
        GET
        
        200
        http://91.92.255.73/v9/qlmz.php?mfgb=5
        
    
    


        

            

                
 REQUEST

                

                    
                    
                

            

            

                
 RESPONSE

                

                    
                    
                

            

        


        

            

                 BODY
                
            

            

                

            

        


    



        
            

    
        GET
        
        200
        http://91.92.255.73/v9/qlmz.php?mfgb=6
        
    
    


        

            

                
 REQUEST

                

                    
                    
                

            

            

                
 RESPONSE

                

                    
                    
                

            

        


        

            

                 BODY
                
            

            

                

            

        


    



        
            

    
        GET
        
        200
        http://91.92.255.73/v9/qlmz.php?mfgb=6
        
    
    


        

            

                
 REQUEST

                

                    
                    
                

            

            

                
 RESPONSE

                

                    
                    
                

            

        


        

            

                 BODY
                
            

            

                

            

        


    



        
            

    
        GET
        
        0
        http://91.92.255.73/v9/qlmz.php?mfgb=35&yjhl=a2VkYi5leGU%3D
        
    
    


        

            

                
 REQUEST

                

                    
                    
                

            

            

                
 RESPONSE

                

                    
                    
                

            

        


        

            

                 BODY
                
            

            

                

            

        


    



        
	




                            
ICMP traffic



No ICMP traffic performed.



                            
IRC traffic



No IRC requests performed.



                            
Suricata Alerts


    

        

            Flow
            SID
            Signature
            Category
        

        
        

            
                TCP
                91.92.255.73:80 ->
                192.168.56.101:49192
            
            2400012
            ET DROP Spamhaus DROP Listed Traffic Inbound group 13
            Misc Attack
        

        
    




Suricata TLS


    
No Suricata TLS




                            
Snort Alerts


    
No Snort Alerts