Sat Jun 24 22:46:19 CEST 2017
Automatic Analysis of the domains in this capture. Results maybe be wrong.
Using https://github.com/staaldraad/fastfluxanalysis
FastFlux Analysis Version: 1.0 (2013)

################################
count

################################
dist.torproject.org
Qname                    |TTL     |A Records  |Ranges  |ASNs  |Countries  |Nameservers  |
dist.torproject.org.     |     296|          6|       6|     5|          3|            0|

---- Fast-Flux Scores ----
Modified Thorsten/Holz: Score (55) Classified ([91mFast-Flux[0m)
Modified Jaroslaw/Patrycja: Score (29) Classified ([91mFast-Flux[0m)
Rule Based: [91mFast-Flux[0m

---- Geolocation ----
----  Moran's Index ----
Timezones: Score (-0.128662551654) Classified ([91mFast-Flux[0m)
UTM: Score (-0.225510403596) Classified ([91mFast-Flux[0m)
MGRS: Score (-0.170579587313) Classified ([91mFast-Flux[0m)
Combined: Score (-0.00494932304919)
----  Geary's Coefficient ----
Timezones: Score (0.785921017859) Classified ([91mFast-Flux[0m)
UTM: Score (0.905635423009) Classified ([91mFast-Flux[0m)
MGRS: Score (1.0077748464) Classified ([91mFast-Flux[0m)
Combined: Score(0.717291721909)

---- URL Analysis ----
[93mDomain: dist.torproject.org.[0m
Entropy analysis (UNIGRAM): [92mBenign[0m
Entropy analysis (BIGRAM): [92mBenign[0m
Probability analysis (UNIGRAM): [92mBenign[0m
Probability analysis (BIGRAM): [92mBenign[0m
Total Variation analysis (UNIGRAM): [91mDGA[0m
Total Variation analysis (BIGRAM): [92mBenign[0m
Naive-Bayesian analysis (UNIGRAM): [92mBenign[0m
Naive-Bayesian analysis (BIGRAM): [92mBenign[0m
Bayesian analysis (UNIGRAM): [92mBenign[0m
Bayesian analysis (BIGRAM): [92mBenign[0m
--

################################
dns.msftncsi.com
Qname                    |TTL     |A Records  |Ranges  |ASNs  |Countries  |Nameservers  |
dns.msftncsi.com.        |      18|          1|       1|     1|          1|            0|

---- Fast-Flux Scores ----
Modified Thorsten/Holz: Score (-25) Classified ([92mClean[0m)
Modified Jaroslaw/Patrycja: Score (7) Classified ([92mClean[0m)
Rule Based: [92mClean[0m

---- Geolocation ----
----  Moran's Index ----
Timezones: Score (0) Classified ([92mClean[0m)
UTM: Score (0) Classified ([92mClean[0m)
MGRS: Score (0) Classified ([92mClean[0m)
Combined: Score (0)
----  Geary's Coefficient ----
Timezones: Score (0) Classified ([92mClean[0m)
UTM: Score (0) Classified ([92mClean[0m)
MGRS: Score (0) Classified ([92mClean[0m)
Combined: Score(0)

---- URL Analysis ----
[93mDomain: dns.msftncsi.com.[0m
Entropy analysis (UNIGRAM): [92mBenign[0m
Entropy analysis (BIGRAM): [92mBenign[0m
Probability analysis (UNIGRAM): [92mBenign[0m
Probability analysis (BIGRAM): [92mBenign[0m
Total Variation analysis (UNIGRAM): [91mDGA[0m
Total Variation analysis (BIGRAM): [91mDGA[0m
Naive-Bayesian analysis (UNIGRAM): [92mBenign[0m
Naive-Bayesian analysis (BIGRAM): [92mBenign[0m
Bayesian analysis (UNIGRAM): [92mBenign[0m
Bayesian analysis (BIGRAM): [91mDGA[0m
--

################################
trans_id

################################
www.dropbox.com
Qname                    |TTL     |A Records  |Ranges  |ASNs  |Countries  |Nameservers  |
www.dropbox.com.         |      32|          1|       1|     1|          1|            0|

---- Fast-Flux Scores ----
Modified Thorsten/Holz: Score (-25) Classified ([92mClean[0m)
Modified Jaroslaw/Patrycja: Score (7) Classified ([92mClean[0m)
Rule Based: [92mClean[0m

---- Geolocation ----

---- URL Analysis ----
[93mDomain: www.dropbox.com.[0m
Entropy analysis (UNIGRAM): [91mDGA[0m
Entropy analysis (BIGRAM): [91mDGA[0m
Probability analysis (UNIGRAM): [91mDGA[0m
Probability analysis (BIGRAM): [91mDGA[0m
Total Variation analysis (UNIGRAM): [91mDGA[0m
Total Variation analysis (BIGRAM): [91mDGA[0m
Naive-Bayesian analysis (UNIGRAM): [91mDGA[0m
Naive-Bayesian analysis (BIGRAM): [92mBenign[0m
Bayesian analysis (UNIGRAM): [91mDGA[0m
Bayesian analysis (BIGRAM): [92mBenign[0m
--