分析类型 | 虚拟机标签 | 开始时间 | 结束时间 | 持续时间 |
---|---|---|---|---|
文件 (Windows) | win7-sp1-x64-shaapp03-1 | 2021-04-21 22:26:47 | 2021-04-21 22:28:56 | 129 秒 |
文件名 | 青年多功能手V4.22.exe |
---|---|
文件大小 | 2839036 字节 |
文件类型 | PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed |
MD5 | 94e9279eb7e57a7f586ee7bbd10442e4 |
SHA1 | 2d21cfcf492f591de81f57b1d1dab8624b2159ce |
SHA256 | c913452c193b27605a930e6919cc70fd46e48aae9ce14a09556520fe2fd38244 |
SHA512 | f8072734f0448b735c21886d39a6d77721d0fc3ac772834c7709a6bea096559b5ab06ff9a9c35d1ddf2cbeb5c620fba54f5f0b22baf3c92e6fdd3359e19b0983 |
CRC32 | 019C86C0 |
Ssdeep | 49152:5RxB5v+sCT6MLlGqDKNsDtf/xtJxOFeVz8Wd9IOpUt87vFX:5d8pJlCMh3xOEy2xt |
Yara | 登录查看Yara规则 |
样本下载 提交误报 |
无主机纪录.
初始地址 | 0x00400000 |
---|---|
入口地址 | 0x00e26e60 |
声明校验值 | 0x00000000 |
实际校验值 | 0x002bcd62 |
最低操作系统版本要求 | 4.0 |
编译时间 | 1992-06-20 06:22:17 |
载入哈希 | e253f8ec0371c0d6a5b2b4676e8c61c6 |
名称 | 虚拟地址 | 虚拟大小 | 原始数据大小 | 特征 | 熵(Entropy) |
---|---|---|---|---|---|
UPX0 | 0x00001000 | 0x00a18000 | 0x00000000 | IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 0.00 |
UPX1 | 0x00a19000 | 0x0000f000 | 0x0000e200 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 7.84 |
.rsrc | 0x00a28000 | 0x00001000 | 0x00000a00 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 4.81 |
偏移量 | 0x0000f000 |
大小 | 0x002a61fc |
名称 | 偏移量 | 大小 | 语言 | 子语言 | 熵(Entropy) | 文件类型 |
---|---|---|---|---|---|---|
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_STRING | 0x00a2401c | 0x000002a0 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.56 | data |
RT_RCDATA | 0x00a242e8 | 0x00000108 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.07 | data |
RT_RCDATA | 0x00a242e8 | 0x00000108 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.07 | data |
RT_RCDATA | 0x00a242e8 | 0x00000108 | LANG_NEUTRAL | SUBLANG_NEUTRAL | 7.07 | data |
RT_MANIFEST | 0x00a282ac | 0x0000053e | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.92 | XML 1.0 document, ASCII text, with CRLF line terminators |
无主机纪录.
源地址 | 源端口 | 目标地址 | 目标端口 |
---|---|---|---|
192.168.122.201 | 49202 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49203 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49204 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49205 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49200 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49201 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49208 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49209 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49211 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49212 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49214 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49215 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49217 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49218 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49220 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49221 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49223 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49224 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49226 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49227 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49229 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49230 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49232 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49233 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49235 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49236 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49238 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49239 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49241 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49242 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49244 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49245 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49247 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49248 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49250 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49251 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49253 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49254 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49256 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49257 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49259 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49260 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49262 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49263 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49266 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49267 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49270 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49271 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49273 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49274 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49277 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49278 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49280 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49281 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49283 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49284 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49286 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49287 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49289 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49290 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49294 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49295 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49297 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49298 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49301 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49302 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49304 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49305 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49307 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49308 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49310 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49311 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49199 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49206 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49210 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49213 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49216 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49219 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49222 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49225 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49228 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49231 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49234 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49237 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49240 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49243 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49246 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49249 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49252 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49255 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49258 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49261 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49265 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49268 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49272 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49275 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49279 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49282 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49285 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49288 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49293 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49296 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49300 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49303 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49306 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49162 | 23.223.52.59 acroipm.adobe.com | 80 |
源地址 | 源端口 | 目标地址 | 目标端口 |
---|---|---|---|
192.168.122.201 | 52179 | 192.168.122.1 | 53 |
192.168.122.201 | 52207 | 192.168.122.1 | 53 |
192.168.122.201 | 53125 | 192.168.122.1 | 53 |
192.168.122.201 | 56270 | 192.168.122.1 | 53 |
192.168.122.201 | 59401 | 192.168.122.1 | 53 |
192.168.122.201 | 60465 | 192.168.122.1 | 53 |
192.168.122.201 | 65179 | 192.168.122.1 | 53 |
源地址 | 源端口 | 目标地址 | 目标端口 |
---|---|---|---|
192.168.122.201 | 49202 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49203 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49204 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49205 | 114.80.187.79 ocsp.globalsign.com | 80 |
192.168.122.201 | 49200 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49201 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49208 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49209 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49211 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49212 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49214 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49215 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49217 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49218 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49220 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49221 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49223 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49224 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49226 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49227 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49229 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49230 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49232 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49233 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49235 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49236 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49238 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49239 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49241 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49242 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49244 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49245 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49247 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49248 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49250 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49251 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49253 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49254 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49256 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49257 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49259 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49260 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49262 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49263 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49266 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49267 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49270 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49271 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49273 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49274 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49277 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49278 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49280 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49281 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49283 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49284 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49286 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49287 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49289 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49290 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49294 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49295 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49297 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49298 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49301 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49302 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49304 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49305 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49307 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49308 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49310 | 117.27.158.80 www.taobao.com | 80 |
192.168.122.201 | 49311 | 117.27.158.80 www.taobao.com | 443 |
192.168.122.201 | 49199 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49206 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49210 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49213 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49216 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49219 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49222 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49225 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49228 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49231 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49234 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49237 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49240 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49243 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49246 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49249 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49252 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49255 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49258 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49261 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49265 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49268 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49272 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49275 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49279 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49282 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49285 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49288 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49293 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49296 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49300 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49303 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49306 | 149.248.52.63 kinh.xmcxmr.com | 442 |
192.168.122.201 | 49162 | 23.223.52.59 acroipm.adobe.com | 80 |
源地址 | 源端口 | 目标地址 | 目标端口 |
---|---|---|---|
192.168.122.201 | 52179 | 192.168.122.1 | 53 |
192.168.122.201 | 52207 | 192.168.122.1 | 53 |
192.168.122.201 | 53125 | 192.168.122.1 | 53 |
192.168.122.201 | 56270 | 192.168.122.1 | 53 |
192.168.122.201 | 59401 | 192.168.122.1 | 53 |
192.168.122.201 | 60465 | 192.168.122.1 | 53 |
192.168.122.201 | 65179 | 192.168.122.1 | 53 |
URI | HTTP数据 |
---|---|
URL专业沙箱检测 -> http://acroipm.adobe.com/11/rdr/CHS/win/nooem/none/message.zip | GET /11/rdr/CHS/win/nooem/none/message.zip HTTP/1.1 Accept: */* If-Modified-Since: Mon, 08 Nov 2017 08:44:36 GMT User-Agent: IPM Host: acroipm.adobe.com Connection: Keep-Alive Cache-Control: no-cache |
URL专业沙箱检测 -> http://www.taobao.com/help/getip.php | GET /help/getip.php HTTP/1.1 Host: www.taobao.com Cache-Control: no-cache |
URL专业沙箱检测 -> http://ocsp.globalsign.com/rootr1/MEwwSjBIMEYwRDAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCCwQAAAAAAURO8EJH | GET /rootr1/MEwwSjBIMEYwRDAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCCwQAAAAAAURO8EJH HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: ocsp.globalsign.com |
URL专业沙箱检测 -> http://ocsp.globalsign.com/rootr1/MEwwSjBIMEYwRDAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCCwQAAAAAAURO8EJH | GET /rootr1/MEwwSjBIMEYwRDAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCCwQAAAAAAURO8EJH HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: ocsp.globalsign.com |
URL专业沙箱检测 -> http://ocsp2.globalsign.com/gsorganizationvalsha2g2/ME0wSzBJMEcwRTAJBgUrDgMCGgUABBQMnk2cPe3vhNiR6XLHz4QGvBl7BwQUlt5h8b0cFilTHMDMfTuDAEDmGnwCDG1VcWLvtKJkED9zuA%3D%3D | GET /gsorganizationvalsha2g2/ME0wSzBJMEcwRTAJBgUrDgMCGgUABBQMnk2cPe3vhNiR6XLHz4QGvBl7BwQUlt5h8b0cFilTHMDMfTuDAEDmGnwCDG1VcWLvtKJkED9zuA%3D%3D HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: ocsp2.globalsign.com |
URL专业沙箱检测 -> http://crl.globalsign.net/root.crl | GET /root.crl HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: crl.globalsign.net |
URL专业沙箱检测 -> http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl | GET /gs/gsorganizationvalsha2g2.crl HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: crl.globalsign.com |
无SMTP流量.
无IRC请求.
无ICMP流量.
无 CIF 结果
Timestamp | Source IP | Source Port | Destination IP | Destination Port | Protocol | SID | Signature | Category |
---|---|---|---|---|---|---|---|---|
2021-04-21 22:27:36.439919+0800 | 192.168.122.201 | 49213 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:40.448878+0800 | 192.168.122.201 | 49222 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:37.772305+0800 | 192.168.122.201 | 49216 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:33.710349+0800 | 192.168.122.201 | 49206 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:43.118674+0800 | 192.168.122.201 | 49228 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:41.778859+0800 | 192.168.122.201 | 49225 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:39.079547+0800 | 192.168.122.201 | 49219 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:50.198004+0800 | 192.168.122.201 | 49237 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:32.353097+0800 | 192.168.122.201 | 49199 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:47.347379+0800 | 192.168.122.201 | 49234 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:11.841690+0800 | 192.168.122.201 | 49265 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:51.535585+0800 | 192.168.122.201 | 49240 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:35.067998+0800 | 192.168.122.201 | 49210 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:59.875612+0800 | 192.168.122.201 | 49255 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:46.008714+0800 | 192.168.122.201 | 49231 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:57.196003+0800 | 192.168.122.201 | 49249 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:36.163428+0800 | 192.168.122.201 | 49279 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:40.478402+0800 | 192.168.122.201 | 49282 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:01.235630+0800 | 192.168.122.201 | 49258 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:48.231695+0800 | 192.168.122.201 | 49293 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:52.902623+0800 | 192.168.122.201 | 49243 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:51.752855+0800 | 192.168.122.201 | 49300 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:21.917802+0800 | 192.168.122.201 | 49268 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:03.850193+0800 | 192.168.122.201 | 49261 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:34.418644+0800 | 192.168.122.201 | 49275 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:49.673163+0800 | 192.168.122.201 | 49296 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:54.625657+0800 | 192.168.122.201 | 49306 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:46.370022+0800 | 192.168.122.201 | 49288 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:27:58.555106+0800 | 192.168.122.201 | 49252 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:43.096847+0800 | 192.168.122.201 | 49285 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:53.154556+0800 | 192.168.122.201 | 49303 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
2021-04-21 22:28:27.431074+0800 | 192.168.122.201 | 49272 | 149.248.52.63 | 442 | TCP | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
Timestamp | Source IP | Source Port | Destination IP | Destination Port | Version | Issuer | Subject | Fingerprint |
---|---|---|---|---|---|---|---|---|
2021-04-21 22:27:33.417279+0800 | 192.168.122.201 | 49209 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:34.772769+0800 | 192.168.122.201 | 49212 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:40.150641+0800 | 192.168.122.201 | 49224 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:38.809496+0800 | 192.168.122.201 | 49221 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:36.137054+0800 | 192.168.122.201 | 49215 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:45.714319+0800 | 192.168.122.201 | 49233 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:31.667979+0800 | 192.168.122.201 | 49201 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:49.904870+0800 | 192.168.122.201 | 49239 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:14.655484+0800 | 192.168.122.201 | 49271 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:42.845687+0800 | 192.168.122.201 | 49230 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:35.872949+0800 | 192.168.122.201 | 49281 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:56.909852+0800 | 192.168.122.201 | 49251 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:00.949878+0800 | 192.168.122.201 | 49260 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:41.494445+0800 | 192.168.122.201 | 49227 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:52.585653+0800 | 192.168.122.201 | 49245 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:47.074581+0800 | 192.168.122.201 | 49236 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:51.256970+0800 | 192.168.122.201 | 49242 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:58.271723+0800 | 192.168.122.201 | 49254 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:02.289030+0800 | 192.168.122.201 | 49263 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:37.488495+0800 | 192.168.122.201 | 49218 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:34.058008+0800 | 192.168.122.201 | 49278 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:59.603205+0800 | 192.168.122.201 | 49257 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:27:53.937424+0800 | 192.168.122.201 | 49248 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:44.255848+0800 | 192.168.122.201 | 49290 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:25.265865+0800 | 192.168.122.201 | 49274 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:42.250086+0800 | 192.168.122.201 | 49287 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:49.374704+0800 | 192.168.122.201 | 49298 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:51.449738+0800 | 192.168.122.201 | 49302 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:52.848210+0800 | 192.168.122.201 | 49305 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:54.313862+0800 | 192.168.122.201 | 49308 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:47.669666+0800 | 192.168.122.201 | 49295 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:55.676039+0800 | 192.168.122.201 | 49311 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
2021-04-21 22:28:08.365814+0800 | 192.168.122.201 | 49267 | 117.27.158.80 | 443 | TLSv1 | C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2 | C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.tmall.com | 9c:54:64:7f:72:a5:07:a6:b9:1d:46:d3:df:50:a6:7f:8a:28:25:30 |
No Suricata HTTP
HTML 总结报告 (需15-60分钟同步) |
下载 |
---|
Task ID | 631866 |
---|---|
Mongo ID | 608037057e769a0f704944dc |
Cuckoo release | 1.4-Maldun |