CapTipper

Analysis Info

PCAP File Analysis Time CapTipper Version Traffic Time
/opt/Malware-Project/BigDataset/Scenarios/CTU-Mixed-Capture-5//2015-03-19_winnormal.pcap 03/19/16 16:42:28 0.2 b10 07/02/70 00:28:17

Flow View


Client Details

IP10.0.2.200
MAC08:00:27:71:51:73
USER-AGENTMicrosoft-CryptoAPI/6.1

Conversations

ocsp.godaddy.com    (188.121.36.239:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
0//MEIwQDA%2BMDwwOjAJBgUrDgMCGgUABBQdI2%2BOBkuXH93foRUj4a7lAr4rGwQUOpqFBxBnKLbv9r0FQW4gwZTaD94CAQc%3Dapplication/ocsp-response0.html200 OKBINARY1.7 KB07/02/70 00:28:17
1//MEgwRjBEMEIwQDAJBgUrDgMCGgUABBS2CA1fbGt26xPkOKX4ZguoUjM0TgQUQMK9J47MNIMwojPX%2B2yz8LQsgM4CBwP5MkdHbkc%3Dapplication/ocsp-response1.html200 OKBINARY1.7 KB07/03/70 10:31:43

redirector.gvt1.com    (216.58.214.238:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
2/edgedl/update2/1.3.29.5/GoogleUpdateSetup.exetext/htmlGoogleUpdateSetup.exe302 FoundHTML615.0 B04/12/71 13:24:32
313/edgedl/release2/ee025ewu0p7mx0mvoa58jm0pb8oawmte6e4g3jdujj18uvfm1fiytlo55b6869f7wbynzr7i2ywjtguswayt7wnbmvqy0lsnvat/49.0.2623.87_47.0.2526.106_chrome_updater.exetext/html49.0.2623.87_47.0.2526.106_chrome_updater.exe302 FoundHTML731.0 B04/21/81 03:14:19
674/crx/blobs/QgAAAC6zw0qH2DJtnXe8Z7rUJP0rZ86QuDRWaqEVY0i4d3uIVSVhFb5Y3qD1eMovvJvy5Ky6Qtkq7Q66LkzHNqLO3Fu1ed_PJpm0ejVQ8nNbqYZ-AMZSmuVX8dXrcwtaflyEkUQ-H78Xy8vwZQ/extension_6_44_4.crxtext/htmlextension_6_44_4.crx302 Found0.0 B06/18/70 03:32:10

r3---sn-jxnoxu-2gbe.gvt1.com    (195.113.214.206:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
3/edgedl/update2/1.3.29.5/GoogleUpdateSetup.exe?cms_redirect=yes&expire=1458411224&ip=147.32.83.56&ipbits=0&mm=28&mn=sn-jxnoxu-2gbe&ms=nvh&mt=1458396259&mv=u&pl=18&shardbypass=yes&sparams=expire,ip,ipbits,mm,mn,ms,mv,pl,shardbypass&signature=1680193C647D132A99BDACC58CBC19D56BE69D14.6EC4297EBE355153F27644C71A320A17920436F9&key=cms1application/x-msdos-programGoogleUpdateSetup.exe200 OKEXE964.6 KB04/13/71 22:49:09