CapTipper

Analysis Info

PCAP File Analysis Time CapTipper Version Traffic Time
/opt/Malware-Project/Dataset/Botnet-Capture/beingAnalyzedAndPublished/CTU-Malware-Capture-Botnet-25/2014-02-07_capture-win3.pcap 06/01/15 15:22:45 0.2 b10 05/11/72 04:59:33

Flow View


Client Details

IP10.0.2.103
MAC08:00:27:3d:00:32
USER-AGENTMicrosoft NCSI

Conversations

www.msftncsi.com    (2.16.216.153:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
0/ncsi.txttext/plainncsi.txt200 OKTEXT14.0 B05/11/72 04:59:33

www.google.com    (173.194.39.148:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
1/text/html1.html302 FoundHTML258.0 B02/27/77 16:44:34

www.google.cz    (173.194.39.152:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
2/?gws_rd=cr&ei=7lrvUoy8EIbHswbkoYC4BAtext/html2.html302 FoundHTML259.0 B03/01/77 08:41:33
8/?gws_rd=cr&ei=g2zvUvudGoKFtAbiqIGYBgtext/html8.html302 FoundHTML259.0 B10/18/19 18:09:14

pcqampjtctmbtobzleivojvzr.info    (69.195.129.70:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
3/(2)text/plain(2)200 OK0.0 B12/03/00 21:51:37
6/(4)text/plain(4)200 OK0.0 B05/21/71 07:09:40

bexhlzkjobugdeukxpknztytl.info    (166.78.144.80:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
4/(3)text/html(3)200 OK0.0 B11/13/11 02:08:34
7/(5)text/html(5)200 OK0.0 B04/27/82 00:18:40

www.google.cz    (173.194.39.159:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
5/?gws_rd=cr&ei=uGPvUvDqCMnTtAbT-YFgtext/html5.html302 FoundHTML257.0 B06/15/48 15:35:29