Network Analysis

Download pcap
Hosts 0 DNS 0 TCP 0 UDP 0 HTTP 0 ICMP 0 IRC 0 Suricata Snort
IP Address Status Action VT Location
No hosts contacted.
Name Response Post-Analysis Lookup
No hosts contacted.

No traffic

No traffic

No traffic

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

Flow SID Signature Category
TCP 108.156.22.12:443 -> 192.168.168.218:49270 2029340 ET INFO TLS Handshake Failure Potentially Bad Traffic
TCP 108.156.22.12:443 -> 192.168.168.218:49271 2029340 ET INFO TLS Handshake Failure Potentially Bad Traffic
TCP 18.165.140.98:443 -> 192.168.168.218:49290 2029340 ET INFO TLS Handshake Failure Potentially Bad Traffic
TCP 18.165.140.98:443 -> 192.168.168.218:49291 2029340 ET INFO TLS Handshake Failure Potentially Bad Traffic

Suricata TLS

Flow Issuer Subject Fingerprint
TLS 1.2
192.168.168.218:49244
216.58.211.228:443 		C=US, O=Google Trust Services, CN=WR2 CN=www.google.com 18:68:d7:a6:6e:58:db:f0:4b:b6:53:af:ba:2b:82:59:4f:36:d8:73
TLS 1.2
192.168.168.218:49243
216.58.211.228:443 		C=US, O=Google Trust Services, CN=WR2 CN=www.google.com 18:68:d7:a6:6e:58:db:f0:4b:b6:53:af:ba:2b:82:59:4f:36:d8:73
TLS 1.2
192.168.168.218:49259
188.114.96.1:443 		C=US, O=Google Trust Services, CN=WE1 CN=lookmovie2-official.lol c9:47:cf:53:69:32:1f:ba:53:f4:0a:b8:44:32:80:20:b2:8d:b5:3b
TLS 1.2
192.168.168.218:49260
188.114.96.1:443 		C=US, O=Google Trust Services, CN=WE1 CN=lookmovie2-official.lol c9:47:cf:53:69:32:1f:ba:53:f4:0a:b8:44:32:80:20:b2:8d:b5:3b
TLS 1.2
192.168.168.218:49267
216.58.209.170:443 		C=US, O=Google Trust Services, CN=WR2 CN=upload.video.google.com dc:40:bf:b1:59:c9:cc:b5:4a:38:2d:d0:16:8d:06:a5:1d:b4:08:8b
TLS 1.2
192.168.168.218:49268
216.58.209.170:443 		C=US, O=Google Trust Services, CN=WR2 CN=upload.video.google.com dc:40:bf:b1:59:c9:cc:b5:4a:38:2d:d0:16:8d:06:a5:1d:b4:08:8b
TLS 1.2
192.168.168.218:49274
172.240.108.68:443 		C=US, O=Let's Encrypt, CN=R11 CN=densubmarinesubdued.com 46:fd:c6:e2:ce:19:d2:d3:d0:c0:57:76:ee:e3:ee:b6:87:19:8f:2e
TLS 1.2
192.168.168.218:49275
172.240.108.68:443 		C=US, O=Let's Encrypt, CN=R11 CN=densubmarinesubdued.com 46:fd:c6:e2:ce:19:d2:d3:d0:c0:57:76:ee:e3:ee:b6:87:19:8f:2e
TLS 1.2
192.168.168.218:49279
172.240.108.68:443 		C=US, O=Let's Encrypt, CN=R11 CN=densubmarinesubdued.com 46:fd:c6:e2:ce:19:d2:d3:d0:c0:57:76:ee:e3:ee:b6:87:19:8f:2e
TLS 1.2
192.168.168.218:49281
216.58.211.227:443 		C=US, O=Google Trust Services, CN=WR2 CN=*.gstatic.com 9a:5e:6d:44:d8:fb:03:e5:9a:13:6d:ff:53:da:1c:8c:ea:3a:a7:aa
TLS 1.2
192.168.168.218:49280
216.58.211.227:443 		C=US, O=Google Trust Services, CN=WR2 CN=*.gstatic.com 9a:5e:6d:44:d8:fb:03:e5:9a:13:6d:ff:53:da:1c:8c:ea:3a:a7:aa
TLS 1.2
192.168.168.218:49283
216.58.211.227:443 		C=US, O=Google Trust Services, CN=WR2 CN=*.gstatic.com 9a:5e:6d:44:d8:fb:03:e5:9a:13:6d:ff:53:da:1c:8c:ea:3a:a7:aa
TLS 1.2
192.168.168.218:49282
216.58.211.227:443 		C=US, O=Google Trust Services, CN=WR2 CN=*.gstatic.com 9a:5e:6d:44:d8:fb:03:e5:9a:13:6d:ff:53:da:1c:8c:ea:3a:a7:aa
TLS 1.2
192.168.168.218:49284
104.20.5.22:443 		C=US, O=Google Trust Services, CN=WE1 CN=s10.histats.com 1a:e0:fd:c5:c3:dd:68:a6:91:36:66:fd:1c:fa:22:5b:7b:bf:8d:3e
TLS 1.2
192.168.168.218:49285
104.20.5.22:443 		C=US, O=Google Trust Services, CN=WE1 CN=s10.histats.com 1a:e0:fd:c5:c3:dd:68:a6:91:36:66:fd:1c:fa:22:5b:7b:bf:8d:3e
TLS 1.2
192.168.168.218:49263
188.114.96.1:443 		None None None
TLS 1.2
192.168.168.218:49295
149.56.240.127:443 		C=US, O=Let's Encrypt, CN=R10 CN=histats.com f3:11:dc:4d:e4:49:c5:23:ad:39:91:ab:bf:25:00:5e:72:33:94:18
TLS 1.2
192.168.168.218:49294
149.56.240.127:443 		C=US, O=Let's Encrypt, CN=R10 CN=histats.com f3:11:dc:4d:e4:49:c5:23:ad:39:91:ab:bf:25:00:5e:72:33:94:18
TLS 1.2
192.168.168.218:49297
149.56.240.127:443 		C=US, O=Let's Encrypt, CN=R10 CN=histats.com f3:11:dc:4d:e4:49:c5:23:ad:39:91:ab:bf:25:00:5e:72:33:94:18
TLS 1.2
192.168.168.218:49262
188.114.96.1:443 		None None None

Snort Alerts

No Snort Alerts

Cuckoo

We're processing your submission... This could take a few seconds.