NET CLR 3.5.3 0729)Host: img.tourt odaylabora Co nnection: Keep-Alive HTTP traffic detected: GET /img/B erabarew/C ustom_TL%2 0bg_d1.png HTTP/1.1A ccept: */* Accept-Lan guage: en- USAccept-E ncoding: g zip, defla teUser-Age nt: Mozill a/4.0 (com patible M SIE 7.0 W indows NT 10.0 WOW6 4 Trident /7.0. 0 (Windows NT 10.0 WOW64 Tri dent/7.0 rv:11.0) l ike GeckoC ontent-Len gth: 1120C ache-Contr ol: no-cac he HTTP traffic detected: POST / HTT P/1.1Accep t: */*Host : rp.tourt odaylabora Us er-Agent: Mozilla/5. comUser-A gent: Mozi lla/5.0 (W indows NT 10.0 WOW6 4 Trident /7.0 rv:1 1.0) like GeckoConte nt-Length: 2480Cache -Control: no-cache HTTP traffic detected: POST /Fusi onFileZill a/ HTTP/1. 0 (Windows NT 10.0 WOW64 Tri dent/7.0 rv:11.0) l ike GeckoC ontent-Len gth: 1392C ache-Contr ol: no-cac he Uses a known web browser user agent for HTTP communication JA3 SSL client fingerprint seen in connection with other malware IP address seen in connection with other malware Standard Non-Application Layer Protocol 4
0 kommentar(er)
