IP 192.124.249.41:0
Hash 8e89ea731c1ebe5f147cd13d00d50a86
258ee7da67b5f1cb3645b47341f3a5ac5dec394b
6e897fd2d9ed71e19b6e4da4c96ebfc6a1192d0606415d5cce3cae2f368f4b7d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Jun 2023 15:31:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Jun 2023 22:39:59 GMT
Expires: Fri, 09 Jun 2023 22:39:59 GMT
ETag: "258ee7da67b5f1cb3645b47341f3a5ac5dec394b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
updates.dxbx.ru/DxBx.Desktop-setup-v1.1.3.exe
0.0.0.0 0 B URL User Request GET updates.dxbx.ru/DxBx.Desktop-setup-v1.1.3.exe
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ET POLICY PE EXE or DLL Windows file download HTTP
GET /DxBx.Desktop-setup-v1.1.3.exe HTTP/1.1
Host: updates.dxbx.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 09 Jun 2023 15:31:03 GMT
Content-Type: application/octet-stream
Content-Length: 74082330
Connection: keep-alive
Set-Cookie: PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6ImVlMDUwODA4YTI2MjZjYzNjODY3OTRjZDA5ZGZjNDUyYTUyMDc0MjItMTY4NjMyNDY2MzUzNS0xNzMxYjJlYmJhNjgwMTI2ODFhNWM3YWEifSwibmJmIjoxNjg2MzI0NjYzLCJpYXQiOjE2ODYzMjQ2NjN9.rTkb47g2HNje9xRE27Ur5rOeGHZgRWkjHAtow4ATdGI; SameSite=Lax; Path=/; HTTPOnly
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src
X-Permitted-Cross-Domain-Policies: master-only
updates.dxbx.ru/DxBx.Desktop-setup-v1.1.3.exe
0.0.0.0 0 B URL User Request GET updates.dxbx.ru/DxBx.Desktop-setup-v1.1.3.exe
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ET POLICY PE EXE or DLL Windows file download HTTP
GET /DxBx.Desktop-setup-v1.1.3.exe HTTP/1.1
Host: updates.dxbx.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache