CapTipper

Analysis Info

PCAP File Analysis Time CapTipper Version Traffic Time
/opt/Malware-Project/BigDataset/Scenarios/CTU-Malware-Capture-Botnet-313-1//capture_win12.pcap 09/14/17 16:48:57 0.3 b13 04/19/76 02:44:32

Flow View


Client Details

IP192.168.1.122
MAC08:00:27:12:45:de
USER-AGENTNSIS InetBgDL (Mozilla)

Conversations

download.mozilla.org    (34.192.80.166:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
0/?os=win&lang=en-US&product=firefox-latesttext/html0.html302 FoundTEXT123.0 B04/19/76 02:44:32

download.cdn.mozilla.net    (195.113.232.72:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
1/pub/firefox/releases/55.0.1/win32/en-US/Firefox%20Setup%2055.0.1.exeapplication/x-msdos-programFirefox%20Setup%2055.0.1.exe200 OKEXE32.5 MB05/01/76 23:49:43

www.download.windowsupdate.com    (13.107.4.50:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
2/msdownload/update/v3/static/trustedr/en/authrootstl.cabapplication/vnd.ms-cab-compressedauthrootstl.cab200 OKCAB51.7 KB12/13/70 10:36:02

ocsp.digicert.com    (93.184.220.29:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
3/MFEwTzBNMEswSTAJBgUrDgMCGgUABBT3xL4LQLXDRDM9P665TW442vrsUQQUReuir%2FSSy4IxLVGLp6chnfNtyA8CEAQJGBtf1btmdVNDtW%2BVUAg%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBT3xL4LQLXDRDM9P665TW442vrsUQQUReuir%2FSSy4IxLVGLp6chnfNtyA8CEAQJGBtf1btmdVNDtW%2BVUAg%3D200 OKBINARY471.0 B02/09/71 03:53:52
4/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSnR4FoxLLkI7vkvsUIFlZt%2BlGH3gQUWsS5eyoKo6XqcQPAYPkt9mV1DlgCEAxTltyylJxw%2BsSKsIoHM44%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBSnR4FoxLLkI7vkvsUIFlZt%2BlGH3gQUWsS5eyoKo6XqcQPAYPkt9mV1DlgCEAxTltyylJxw%2BsSKsIoHM44%3D200 OKBINARY471.0 B02/12/71 21:45:16

detectportal.firefox.com    (195.113.232.75:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
5/success.txttext/plainsuccess.txt200 OKTEXT8.0 B07/13/75 12:32:37