11/25/2023 0 Comments Resilio sync ip adddress reveal![]() HTTP traffic detected: HTTP/1.1 2 00 OKConte nt-Encodin g: gzipCon tent-Type: text/html Date: Mon, 12 Aug 20 19 16:18:3 4 GMTServe r: nginxX- Powered-By : PHP/5.5. HTTP traffic detected: HTTP/1.1 2 00 OKConte nt-Encodin g: gzipCon tent-Type: text/html Date: Mon, 12 Aug 20 19 16:18:1 2 GMTServe r: nginxX- Powered-By : PHP/5.5. Sends SSDP (simple service discovery protocol) broadcast queries JA3 SSL client fingerprint seen in connection with other malware IP address seen in connection with other malware HTTP traffic detected: GETData Ra w: Data As cii: UDP traffic detected without corresponding DNS query: 239.255.25 5.250 ![]() TCP traffic detected without corresponding DNS query: 93.184.221. TCP traffic detected without corresponding DNS query: 172.217.23. TCP traffic detected without corresponding DNS query: 64.4.16.21 2 ![]() ![]() TCP traffic detected without corresponding DNS query: 23.37.43.2 7 TCP traffic detected without corresponding DNS query: 93.184.220. Standard Non-Application Layer Protocol 4Įxfiltration Over Command and Control ChannelĬonnects to IPs without corresponding DNS lookups ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |