ssocsp.cybertrust.ne.jp/OcspServer
116.118.230.85 1.5 kB URL ssocsp.cybertrust.ne.jp/OcspServer
IP 116.118.230.85:0
ASN #58793 FUJITSU CLOUD TECHNOLOGIES LIMITED
Hash 7359a9309e19c8c8c346823f17c1f038
e02cc6e1cf3e5d8e48aa418aadcdbe4af9db9204
d790664c03500f457c21ce6a5bc687132387afd13d9eabe9f22cc826f84b0995
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 01:46:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
ssocsp.cybertrust.ne.jp/OcspServer
116.118.230.85 1.5 kB URL ssocsp.cybertrust.ne.jp/OcspServer
IP 116.118.230.85:0
ASN #58793 FUJITSU CLOUD TECHNOLOGIES LIMITED
Hash 7359a9309e19c8c8c346823f17c1f038
e02cc6e1cf3e5d8e48aa418aadcdbe4af9db9204
d790664c03500f457c21ce6a5bc687132387afd13d9eabe9f22cc826f84b0995
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 01:46:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
support.d-imaging.sony.co.jp/download/SRD/SRD20_Installer0810a.exe?fm=jp&s_pid=cs_HDR-PJ680
3.114.51.68302 Found 245 B URL User Request GET HTTP/2 support.d-imaging.sony.co.jp/download/SRD/SRD20_Installer0810a.exe?fm=jp&s_pid=cs_HDR-PJ680
IP 3.114.51.68:443
Certificate IssuerCybertrust Japan Co., Ltd.
Subject*.d-imaging.sony.co.jp
FingerprintBC:C7:1D:E2:FD:96:B4:92:BC:C8:05:E5:4A:61:85:8B:1F:93:9D:09
ValidityTue, 04 Apr 2023 09:19:58 GMT - Sun, 21 Apr 2024 14:59:00 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d17ef8a30895377e606b55cdaebd2e67
b8039a227ee269a2631726ed867b8a28b10997b9
bc94cf1c4e67239b9a5daee9140ce582d276e8e026f35a334579dc2324c36154
GET /download/SRD/SRD20_Installer0810a.exe?fm=jp&s_pid=cs_HDR-PJ680 HTTP/1.1
Host: support.d-imaging.sony.co.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 02 Jun 2023 01:46:02 GMT
content-type: text/html; charset=iso-8859-1
content-length: 245
location: http://ids.update.sony.net/microsoft/SRD20_Installer0810a.exe
set-cookie: AWSALB=azEdbeRE4iocRH9io+WR8Gz8Z2Wqr388v/x1aywREvHgnXsxVaCsBs9JygMc+Qu8kvHHQ/5FNioGAcANsv+jxLTHTguC46S13y7Es42NCRBLvRaS0/fZORCddbEy; Expires=Fri, 09 Jun 2023 01:46:02 GMT; Path=/
AWSALBCORS=azEdbeRE4iocRH9io+WR8Gz8Z2Wqr388v/x1aywREvHgnXsxVaCsBs9JygMc+Qu8kvHHQ/5FNioGAcANsv+jxLTHTguC46S13y7Es42NCRBLvRaS0/fZORCddbEy; Expires=Fri, 09 Jun 2023 01:46:02 GMT; Path=/; SameSite=None; Secure
server: Apache
X-Firefox-Spdy: h2
ids.update.sony.net/microsoft/SRD20_Installer0810a.exe
104.88.23.184200 OK 7.8 MB URL User Request GET HTTP/1.1 ids.update.sony.net/microsoft/SRD20_Installer0810a.exe
IP 104.88.23.184:80
File type PE32 executable (GUI) Intel 80386, for MS Windows, InstallShield self-extracting archive\012- data
Size 7.8 MB (7793096 bytes)
Hash 6514e84ef662b96d4f9d4b08eaff75f8
d471ce07b721587529d0ff442d1a8afda0b9f525
802a79efbe3e23487fad1961941183cd6ba6e5c87fbb1e8a523c2d615f9860ec
Analyzer Verdict Alert VirusTotal 0/64
NIDS Severity Alert suricata high ET POLICY PE EXE or DLL Windows file download HTTP
GET /microsoft/SRD20_Installer0810a.exe HTTP/1.1
Host: ids.update.sony.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/octet-stream
ETag: "6514e84ef662b96d4f9d4b08eaff75f8:1224741853"
Last-Modified: Thu, 23 Oct 2008 06:04:13 GMT
Server: AkamaiNetStorage
Content-Length: 7793096
Date: Fri, 02 Jun 2023 01:46:03 GMT
Connection: keep-alive