× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 59083bbd0391ed8a491924ea71905a587d71cde8fc4e8a4138a938fa78f2ebfc
File name: packetcapture.pcap
Detection ratio: 0 / 46
Analysis date: 2013-03-05 20:49:30 UTC ( 5 years, 6 months ago )
Intrusion Detection System Result
Snort 4 alerts
Suricata 10 alerts
Antivirus Result Update
Yandex 20130305
AhnLab-V3 20130305
AntiVir 20130305
Antiy-AVL 20130305
Avast 20130305
AVG 20130305
BitDefender 20130305
ByteHero 20130304
CAT-QuickHeal 20130305
ClamAV 20130305
Commtouch 20130305
Comodo 20130305
DrWeb 20130305
Emsisoft 20130305
eSafe 20130211
ESET-NOD32 20130305
F-Prot 20130305
F-Secure 20130305
Fortinet 20130305
GData 20130305
Ikarus 20130305
Jiangmin 20130304
K7AntiVirus 20130305
Kaspersky 20130305
Kingsoft 20130304
Malwarebytes 20130305
McAfee 20130305
McAfee-GW-Edition 20130305
Microsoft 20130305
eScan 20130305
NANO-Antivirus 20130305
Norman None
nProtect 20130305
Panda 20130305
PCTools 20130305
Rising 20130305
Sophos AV 20130305
SUPERAntiSpyware 20130305
Symantec 20130305
TheHacker 20130305
TotalDefense 20130305
TrendMicro 20130305
TrendMicro-HouseCall 20130305
VBA32 20130305
VIPRE 20130305
ViRobot 20130305
PCAP file! The file being studied is a network traffic capture, when studying it with intrusion detection systems Snort triggered 4 alerts and Suricata triggered 10 alerts.
Wireshark file metadata
File encapsulation Ethernet
Number of packets 180
Data size 21975 bytes
Start time 2013-03-01 12:06:31
File type libpcap
End time 2013-03-01 12:07:03
Capture duration 31 seconds
HTTP requests
DNS requests
Snort alerts Sourcefire VRT ruleset
Suricata alerts Emerging Threats ETPro ruleset
File identification
MD5 75714f03c176e00c7ac15fddef879f7a
SHA1 b03a6bfa0c74c1b3d50357ad568d72bcd0878de3
SHA256 59083bbd0391ed8a491924ea71905a587d71cde8fc4e8a4138a938fa78f2ebfc
ssdeep
384:I6t1RNJhfw/025ZFjepKtoXaHaBGa/agv:I6t1RNXwP5ZFjegoXuEGCT

File size 24.3 KB ( 24879 bytes )
File type Network capture
Magic literal
tcpdump capture file (little-endian) - version 2.4 (Ethernet, capture length 65536)

TrID TCPDUMP's style capture (100.0%)
Tags
cap

VirusTotal metadata
First submission 2013-03-05 20:49:30 UTC ( 5 years, 6 months ago )
Last submission 2013-03-05 20:49:30 UTC ( 5 years, 6 months ago )
File names packetcapture.pcap
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!