Analysis

Category Package Started Completed Duration Log
PCAP 2020-06-11 01:39:16 2020-06-11 01:39:16 0 seconds Show Log

    


Signatures

No signatures

Hosts

No hosts contacted.

DNS

No domains contacted.


Sorry! No behavior.

Hosts

No hosts contacted.

TCP

Source Source Port Destination Destination Port
192.168.1.1 443 192.168.1.101 54366
192.168.1.1 443 192.168.1.101 54368
192.168.1.1 443 192.168.1.102 55056
192.168.1.1 443 192.168.1.102 55058
192.168.1.1 443 192.168.1.102 55060
192.168.1.1 443 192.168.1.102 55062
192.168.1.1 443 192.168.1.103 39600
192.168.1.1 443 192.168.1.103 39602
192.168.1.1 443 192.168.1.103 39604
192.168.1.101 54370 192.168.1.1 443
192.168.1.101 54372 192.168.1.1 443
192.168.1.101 54374 192.168.1.1 443
192.168.1.101 54376 192.168.1.1 443
192.168.1.101 54378 192.168.1.1 443
192.168.1.101 54380 192.168.1.1 443
192.168.1.101 54382 192.168.1.1 443
192.168.1.101 54384 192.168.1.1 443
192.168.1.101 54386 192.168.1.1 443
192.168.1.102 55064 192.168.1.1 443
192.168.1.102 55066 192.168.1.1 443
192.168.1.102 55068 192.168.1.1 443
192.168.1.102 55070 192.168.1.1 443
192.168.1.102 55072 192.168.1.1 443
192.168.1.102 55074 192.168.1.1 443
192.168.1.102 55076 192.168.1.1 443
192.168.1.103 39606 192.168.1.1 443
192.168.1.103 39608 192.168.1.1 443
192.168.1.103 39610 192.168.1.1 443
192.168.1.103 39612 192.168.1.1 443
192.168.1.103 39614 192.168.1.1 443
192.168.1.103 39616 192.168.1.1 443
192.168.1.103 39618 192.168.1.1 443
192.168.1.103 39620 192.168.1.1 443
192.168.1.103 39622 192.168.1.1 443

UDP

No UDP connections recorded.

DNS

No domains contacted.

HTTP Requests

No HTTP requests performed.

SMTP traffic

No SMTP traffic performed.

IRC traffic

No IRC requests performed.

ICMP traffic

No ICMP traffic performed.

CIF Results

No CIF Results

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Suricata HTTP

No Suricata HTTP

Sorry! No dropped Suricata Extracted files.

JA3

Source Source Port Destination Destination Port JA3 Hash JA3 Description
192.168.1.102 55060 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55060 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55062 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55062 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54370 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54370 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54372 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54372 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54374 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54374 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54376 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54376 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54378 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54378 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54380 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54380 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54382 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54382 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54384 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54384 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54386 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.101 54386 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55064 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55064 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55066 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55066 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55068 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55068 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55070 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55070 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55072 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55072 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55074 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.102 55074 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39606 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39606 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39608 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39608 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39610 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39610 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39612 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39612 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39614 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39614 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39616 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39616 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39618 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39618 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39620 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39620 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39622 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
192.168.1.103 39622 192.168.1.1 443 05a58a685c5b62b4363b55d4432d52b1 unknown
Sorry! No dropped files.
Sorry! No CAPE files.
Sorry! No process dumps.
JSON Report Download

Processing ( 0.576 seconds )

  • 0.433 NetworkAnalysis
  • 0.117 CAPE
  • 0.02 AnalysisInfo
  • 0.004 Debug
  • 0.001 BehaviorAnalysis
  • 0.001 Suricata

Signatures ( 0.054000000000000006 seconds )

  • 0.01 ransomware_files
  • 0.007 antiav_detectreg
  • 0.006 ransomware_extensions
  • 0.004 antiav_detectfile
  • 0.003 persistence_autorun
  • 0.003 antianalysis_detectfile
  • 0.003 infostealer_bitcoin
  • 0.003 infostealer_ftp
  • 0.003 territorial_disputes_sigs
  • 0.002 infostealer_im
  • 0.001 kibex_behavior
  • 0.001 tinba_behavior
  • 0.001 antianalysis_detectreg
  • 0.001 antivm_vbox_files
  • 0.001 geodo_banking_trojan
  • 0.001 browser_security
  • 0.001 disables_browser_warn
  • 0.001 infostealer_mail
  • 0.001 masquerade_process_name
  • 0.001 revil_mutexes

Reporting ( 0.053 seconds )

  • 0.053 PCAP2CERT