× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0763ef06a07c35993775ae4cef433204f2e1127932a5555cfa9658b1b90f7fa3
File name: packetcapture.pcap
Detection ratio: 0 / 46
Analysis date: 2013-03-05 19:21:15 UTC ( 5 years, 3 months ago )
Intrusion Detection System Result
Snort 17 alerts
Suricata 14 alerts
Antivirus Result Update
Yandex 20130305
AhnLab-V3 20130305
AntiVir 20130305
Antiy-AVL 20130305
Avast 20130305
AVG 20130305
BitDefender 20130305
ByteHero 20130304
CAT-QuickHeal 20130305
ClamAV 20130305
Commtouch 20130305
Comodo 20130305
DrWeb 20130305
Emsisoft 20130305
eSafe 20130211
ESET-NOD32 20130305
F-Prot 20130305
F-Secure 20130305
Fortinet 20130305
GData 20130305
Ikarus 20130305
Jiangmin 20130304
K7AntiVirus 20130305
Kaspersky 20130305
Kingsoft 20130304
Malwarebytes 20130305
McAfee 20130305
McAfee-GW-Edition 20130305
Microsoft 20130305
eScan 20130305
NANO-Antivirus 20130305
Norman 20130305
nProtect 20130305
Panda 20130305
PCTools 20130305
Rising 20130305
Sophos AV 20130305
SUPERAntiSpyware 20130305
Symantec 20130305
TheHacker 20130305
TotalDefense 20130305
TrendMicro 20130305
TrendMicro-HouseCall 20130305
VBA32 20130305
VIPRE 20130305
ViRobot 20130305
PCAP file! The file being studied is a network traffic capture, when studying it with intrusion detection systems Snort triggered 17 alerts and Suricata triggered 14 alerts.
Wireshark file metadata
File encapsulation Ethernet
Number of packets 8656
Data size 6879779 bytes
Start time 2013-03-01 09:12:31
File type libpcap
End time 2013-03-01 09:13:43
Capture duration 73 seconds
HTTP requests
DNS requests
Snort alerts Sourcefire VRT ruleset
Suricata alerts Emerging Threats ETPro ruleset
File identification
MD5 013312d08ed9a5b57094a92ac531460a
SHA1 1e87ca73c5137bd5129e261e3ffd78e64478724b
SHA256 0763ef06a07c35993775ae4cef433204f2e1127932a5555cfa9658b1b90f7fa3
ssdeep
98304:9VK3GSvfOx+USkkC5sTPogd40p6Wgpak1z6BHN0UIedAPoOW9okY:9ViPMSkkC5Sogy0pazCrIedALWmkY

File size 6.7 MB ( 7018299 bytes )
File type Network capture
Magic literal
tcpdump capture file (little-endian) - version 2.4 (Ethernet, capture length 65536)

TrID TCPDUMP's style capture (100.0%)
Tags
cap

VirusTotal metadata
First submission 2013-03-05 19:21:15 UTC ( 5 years, 3 months ago )
Last submission 2013-03-05 19:21:15 UTC ( 5 years, 3 months ago )
File names packetcapture.pcap
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!