Fri Jan 13 14:09:10 CET 2017
Automatic Analysis of the domains in this capture. Results maybe be wrong.
Using https://github.com/staaldraad/fastfluxanalysis
FastFlux Analysis Version: 1.0 (2013)
################################
-
################################
CMYIP.OMCOM
################################
count
################################
desktop-ou61ucr
################################
DESKTOP-OU61UCR
################################
dns.msftncsi.com
Qname |TTL |A Records |Ranges |ASNs |Countries |Nameservers |
dns.msftncsi.com. | 21| 1| 1| 1| 1| 0|
---- Fast-Flux Scores ----
Modified Thorsten/Holz: Score (-25) Classified (�[92mClean�[0m)
Modified Jaroslaw/Patrycja: Score (7) Classified (�[92mClean�[0m)
Rule Based: �[92mClean�[0m
---- Geolocation ----
---- Moran's Index ----
Timezones: Score (0) Classified (�[92mClean�[0m)
UTM: Score (0) Classified (�[92mClean�[0m)
MGRS: Score (0) Classified (�[92mClean�[0m)
Combined: Score (0)
---- Geary's Coefficient ----
Timezones: Score (0) Classified (�[92mClean�[0m)
UTM: Score (0) Classified (�[92mClean�[0m)
MGRS: Score (0) Classified (�[92mClean�[0m)
Combined: Score(0)
---- URL Analysis ----
�[93mDomain: dns.msftncsi.com.�[0m
Entropy analysis (UNIGRAM): �[92mBenign�[0m
Entropy analysis (BIGRAM): �[92mBenign�[0m
Probability analysis (UNIGRAM): �[92mBenign�[0m
Probability analysis (BIGRAM): �[92mBenign�[0m
Total Variation analysis (UNIGRAM): �[91mDGA�[0m
Total Variation analysis (BIGRAM): �[91mDGA�[0m
Naive-Bayesian analysis (UNIGRAM): �[92mBenign�[0m
Naive-Bayesian analysis (BIGRAM): �[92mBenign�[0m
Bayesian analysis (UNIGRAM): �[92mBenign�[0m
Bayesian analysis (BIGRAM): �[91mDGA�[0m
--
################################
isatap
################################
ISATAP
################################
trans_id
################################
warehouseoutlet.ca
Qname |TTL |A Records |Ranges |ASNs |Countries |Nameservers |
warehouseoutlet.ca. | 4199| 1| 1| 1| 1| 0|
---- Fast-Flux Scores ----
Modified Thorsten/Holz: Score (-30) Classified (�[92mClean�[0m)
Modified Jaroslaw/Patrycja: Score (6) Classified (�[92mClean�[0m)
Rule Based: �[92mClean�[0m
---- Geolocation ----
---- Moran's Index ----
Timezones: Score (0) Classified (�[92mClean�[0m)
UTM: Score (0) Classified (�[92mClean�[0m)
MGRS: Score (0) Classified (�[92mClean�[0m)
Combined: Score (0)
---- Geary's Coefficient ----
Timezones: Score (0) Classified (�[92mClean�[0m)
UTM: Score (0) Classified (�[92mClean�[0m)
MGRS: Score (0) Classified (�[92mClean�[0m)
Combined: Score(0)
---- URL Analysis ----
�[93mDomain: warehouseoutlet.ca.�[0m
Entropy analysis (UNIGRAM): �[92mBenign�[0m
Entropy analysis (BIGRAM): �[92mBenign�[0m
Probability analysis (UNIGRAM): �[92mBenign�[0m
Probability analysis (BIGRAM): �[92mBenign�[0m
Total Variation analysis (UNIGRAM): �[92mBenign�[0m
Total Variation analysis (BIGRAM): �[92mBenign�[0m
Naive-Bayesian analysis (UNIGRAM): �[92mBenign�[0m
Naive-Bayesian analysis (BIGRAM): �[92mBenign�[0m
Bayesian analysis (UNIGRAM): �[92mBenign�[0m
Bayesian analysis (BIGRAM): �[92mBenign�[0m
--
################################
WIN1
################################
WORKGROUP