CapTipper

Analysis Info

PCAP File Analysis Time CapTipper Version Traffic Time
/opt/Malware-Project/BigDataset/Scenarios/CTU-Malware-Capture-Botnet-118//2015-04-20_capture-win5.pcap 04/20/15 11:33:09 0.2 b10 07/06/73 22:46:16

Flow View

5.141.22.43 :13404hitachimriservice.com5.141.22.43:13405checkip.dyndns.orgwww.foxitsoftware.comdownload.foxitsoftware.comClient

Client Details

IP10.0.2.105
MAC08:00:27:ef:ee:34
USER-AGENTMazilla/5.0

Conversations

checkip.dyndns.org    (216.146.38.70:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
0/text/html0.html200 OKHTML104.0 B07/06/73 22:46:16

5.141.22.43:13405    (5.141.22.43:13405)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
1/MONUK14/WIN5/0/61/0/EHKBGFBLGBIJEHKBGFBLGBIJ0.0 B07/13/73 04:25:12

hitachimriservice.com    (216.245.213.210:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
2/images/monuk14.pngimage/pngmonuk14.png200 OKBINARY517.8 KB07/17/73 18:09:26

5.141.22.43 :13404    (5.141.22.43:13404)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
3/MONUK14/WIN5/41/7/4/3.html0.0 B10/21/73 21:41:08

download.foxitsoftware.com    (64.62.194.19:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
4/addon/query.php?name=Update%20List&version=3.0.2009.1301&language=lang_en_us&major=6&minor=1&codepage=1252&EmbededLanguage=en_UStext/htmlquery.php302 FoundHTML362.0 B06/22/77 12:22:29