Alert Table for Forensic Challenge.pcap

Relative Time Packet Source Source Port Destination Dest Port Category Rule Set Signature Severity
6.0 152 10.12.3.66 52392 10.12.3.3 139 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
19.0 272 10.12.3.66 52396 10.12.3.3 445 Misc activity ET INFO NTLM Session Setup Request - Negotiate 3
19.0 273 10.12.3.3 445 10.12.3.66 52396 Misc activity ET INFO NTLMv1 Session Setup Response - Challenge 3
19.0 274 10.12.3.66 52396 10.12.3.3 445 Misc activity ET INFO NTLM Session Setup Request - Auth 3
57.0 1750 10.12.3.66 52414 104.21.29.80 80 Not Suspicious Traffic ET INFO Windows Powershell User-Agent Usage 3
76.0 1777 10.12.3.66 52415 139.59.6.175 80 Not Suspicious Traffic ET INFO Windows Powershell User-Agent Usage 3
76.0 1818 139.59.6.175 80 10.12.3.66 52415 Potential Corporate Privacy Violation ET POLICY PE EXE or DLL Windows file download HTTP 1
76.0 1818 139.59.6.175 80 10.12.3.66 52415 Misc activity ET INFO EXE - Served Attached HTTP 3
91.0 3216 10.12.3.66 52421 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
94.0 3321 10.12.3.66 52422 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
94.0 3328 10.12.3.66 52423 163.172.50.82 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
144.0 3372 10.12.3.66 52424 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
193.0 3395 10.12.3.66 52425 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
195.0 4056 10.12.3.66 52426 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
195.0 4061 10.12.3.66 52427 163.172.50.82 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
241.0 4099 10.12.3.66 52428 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
276.0 4118 10.12.3.66 52429 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
278.0 4823 10.12.3.66 52430 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
279.0 4828 10.12.3.66 52431 163.172.50.82 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
331.0 4876 10.12.3.66 52432 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
382.0 4970 10.12.3.66 52437 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
384.0 5386 10.12.3.66 52438 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
384.0 5398 10.12.3.66 52439 163.172.50.82 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
439.0 5440 10.12.3.66 52440 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
481.0 5457 10.12.3.66 52441 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
483.0 5907 10.12.3.66 52442 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
483.0 5919 10.12.3.66 52443 163.172.50.82 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
527.0 6010 10.12.3.66 52445 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
578.0 6037 10.12.3.66 52446 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
579.0 6159 10.12.3.66 52447 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
626.0 6183 10.12.3.66 52448 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
627.0 6327 10.12.3.66 52449 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
679.0 6358 10.12.3.66 52450 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1657.0 6598 10.12.3.66 52456 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1662.0 8622 10.12.3.66 52457 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1664.0 10752 10.12.3.66 52459 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1666.0 11033 10.12.3.66 52461 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1670.0 11060 10.12.3.66 52462 163.172.50.82 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1680.0 11099 10.12.3.66 52465 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1682.0 11335 194.88.154.132 587 10.12.3.66 52476 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1683.0 11373 10.12.3.66 52486 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1685.0 11693 184.168.200.22 465 10.12.3.66 52491 Generic Protocol Command Decode SURICATA TLS invalid record type 3
1685.0 11693 184.168.200.22 465 10.12.3.66 52491 Generic Protocol Command Decode SURICATA TLS invalid record/traffic 3
1685.0 11694 10.12.3.66 52491 184.168.200.22 465 Generic Protocol Command Decode SURICATA TLS invalid record type 3
1685.0 11694 10.12.3.66 52491 184.168.200.22 465 Generic Protocol Command Decode SURICATA TLS invalid record/traffic 3
1685.0 11698 212.227.15.183 587 10.12.3.66 52498 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1686.0 11786 89.161.250.151 587 10.12.3.66 52501 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1688.0 11888 89.107.186.3 25 10.12.3.66 52507 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1691.0 12014 89.107.186.3 25 10.12.3.66 52507 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1691.0 12028 66.7.203.39 25 10.12.3.66 52519 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1696.0 12373 219.166.192.188 587 10.12.3.66 52558 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1696.0 12390 203.211.136.199 587 10.12.3.66 52559 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1698.0 12474 10.12.3.66 52558 219.166.192.188 587 Generic Protocol Command Decode SURICATA SMTP duplicate fields 3
1700.0 12584 74.208.5.15 587 10.12.3.66 52577 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1703.0 12729 10.12.3.66 52519 66.7.203.39 25 Generic Protocol Command Decode SURICATA SMTP duplicate fields 3
1708.0 12942 74.208.5.15 25 10.12.3.66 52576 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1709.0 13012 74.208.5.15 25 10.12.3.66 52576 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1710.0 13074 10.12.3.66 52581 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1712.0 13423 108.177.122.108 587 10.12.3.66 52589 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1713.0 13429 108.177.122.108 587 10.12.3.66 52588 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1713.0 13490 80.237.132.157 587 10.12.3.66 52593 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1713.0 13527 10.12.3.66 52604 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1715.0 13712 192.252.149.15 587 10.12.3.66 52613 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1715.0 13782 80.237.132.157 587 10.12.3.66 52593 Generic Protocol Command Decode SURICATA TLS invalid record type 3
1715.0 13782 80.237.132.157 587 10.12.3.66 52593 Generic Protocol Command Decode SURICATA TLS invalid record/traffic 3
1715.0 13783 10.12.3.66 52593 80.237.132.157 587 Generic Protocol Command Decode SURICATA TLS invalid record type 3
1715.0 13783 10.12.3.66 52593 80.237.132.157 587 Generic Protocol Command Decode SURICATA TLS invalid record/traffic 3
1740.0 14971 10.12.3.66 52642 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1744.0 15732 212.227.15.183 587 10.12.3.66 52643 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1744.0 15773 194.25.134.46 587 10.12.3.66 52647 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1745.0 15801 108.177.122.108 587 10.12.3.66 52654 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1745.0 15814 212.227.17.190 587 10.12.3.66 52646 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1745.0 15821 149.126.6.109 587 10.12.3.66 52648 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1746.0 15928 86.111.37.33 587 10.12.3.66 52653 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1746.0 16000 108.177.122.108 587 10.12.3.66 52658 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1748.0 16246 149.126.6.109 587 10.12.3.66 52648 Generic Protocol Command Decode SURICATA TLS invalid record type 3
1748.0 16246 149.126.6.109 587 10.12.3.66 52648 Generic Protocol Command Decode SURICATA TLS invalid record/traffic 3
1748.0 16247 10.12.3.66 52648 149.126.6.109 587 Generic Protocol Command Decode SURICATA TLS invalid record type 3
1748.0 16247 10.12.3.66 52648 149.126.6.109 587 Generic Protocol Command Decode SURICATA TLS invalid record/traffic 3
1751.0 16434 76.74.242.19 587 10.12.3.66 52682 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1751.0 16437 202.137.236.12 587 10.12.3.66 52681 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1752.0 16503 10.12.3.66 52685 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1753.0 16531 194.25.134.110 587 10.12.3.66 52689 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1754.0 16585 192.254.250.163 587 10.12.3.66 52691 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1755.0 16803 212.227.15.183 587 10.12.3.66 52697 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1755.0 16846 212.227.17.168 587 10.12.3.66 52703 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1756.0 17024 212.77.101.1 587 10.12.3.66 52707 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1757.0 17448 212.227.15.183 25 10.12.3.66 52695 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1758.0 17518 213.165.67.113 587 10.12.3.66 52718 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1758.0 17559 212.227.15.183 25 10.12.3.66 52695 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1761.0 17729 212.227.17.168 25 10.12.3.66 52702 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1762.0 17778 212.227.17.168 25 10.12.3.66 52702 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1762.0 17783 209.71.212.26 25 10.12.3.66 52709 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1763.0 17847 10.12.3.66 52736 172.104.227.98 443 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1763.0 17851 195.254.252.211 25 10.12.3.66 52700 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1764.0 17886 65.87.230.25 587 10.12.3.66 52737 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1766.0 17999 51.81.229.171 587 10.12.3.66 52743 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1766.0 18067 195.254.252.211 25 10.12.3.66 52700 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1773.0 18203 10.12.3.66 52762 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1777.0 18908 108.177.122.108 587 10.12.3.66 52774 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1779.0 19018 194.150.248.156 587 10.12.3.66 52784 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1780.0 19077 209.71.212.26 25 10.12.3.66 52709 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1781.0 19139 68.178.213.203 25 10.12.3.66 52765 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1785.0 19266 10.12.3.66 52802 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1787.0 19481 17.57.152.18 587 10.12.3.66 52819 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1788.0 19568 213.191.128.76 587 10.12.3.66 52823 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1793.0 20569 184.168.200.246 587 10.12.3.66 52862 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1794.0 20649 46.30.211.140 25 10.12.3.66 52818 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1795.0 20677 86.109.99.70 25 10.12.3.66 52826 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1795.0 20731 83.64.177.212 25 10.12.3.66 52820 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1795.0 20757 46.30.211.140 25 10.12.3.66 52818 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1796.0 20817 190.226.40.3 587 10.12.3.66 52767 Generic Protocol Command Decode SURICATA STREAM Packet with invalid ack 3
1796.0 20817 190.226.40.3 587 10.12.3.66 52767 Generic Protocol Command Decode SURICATA STREAM SHUTDOWN RST invalid ack 3
1797.0 20840 68.178.213.203 25 10.12.3.66 52837 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1797.0 20852 86.109.99.70 25 10.12.3.66 52826 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1797.0 20854 213.165.67.113 587 10.12.3.66 52876 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1798.0 20904 83.64.177.212 25 10.12.3.66 52820 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1798.0 20921 166.78.79.129 25 10.12.3.66 52860 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1800.0 20984 47.43.26.4 587 10.12.3.66 52883 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1800.0 20990 166.78.79.129 25 10.12.3.66 52860 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1807.0 21554 10.12.3.66 52890 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1813.0 23348 10.12.3.66 52891 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1815.0 23764 212.227.15.183 587 10.12.3.66 52894 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1815.0 23829 193.70.98.8 587 10.12.3.66 52904 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1816.0 23990 89.161.196.12 587 10.12.3.66 52916 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1816.0 23996 195.4.92.213 587 10.12.3.66 52918 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1820.0 24296 205.178.146.249 2525 10.12.3.66 52952 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1823.0 24469 85.13.164.30 25 10.12.3.66 52905 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1823.0 24476 178.63.41.189 25 10.12.3.66 52897 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1823.0 24479 212.227.15.183 25 10.12.3.66 52895 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1823.0 24482 212.227.17.190 25 10.12.3.66 52896 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1823.0 24489 212.6.122.170 25 10.12.3.66 52903 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24503 58.80.137.169 587 10.12.3.66 52967 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24515 212.227.15.183 25 10.12.3.66 52910 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24528 2.207.150.234 25 10.12.3.66 52911 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24554 85.13.145.19 25 10.12.3.66 52920 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24557 46.229.230.231 25 10.12.3.66 52925 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24608 216.172.184.136 587 10.12.3.66 52971 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24624 178.63.41.189 25 10.12.3.66 52897 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1824.0 24628 212.227.15.183 25 10.12.3.66 52895 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1824.0 24661 213.226.253.2 25 10.12.3.66 52919 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1824.0 24678 212.227.17.190 25 10.12.3.66 52896 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1825.0 24701 62.149.128.209 25 10.12.3.66 52924 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1825.0 24703 212.227.15.183 25 10.12.3.66 52910 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1825.0 24711 85.93.165.22 25 10.12.3.66 52909 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1826.0 24916 62.149.128.209 25 10.12.3.66 52924 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1826.0 25087 85.13.164.30 25 10.12.3.66 52905 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1826.0 25098 212.6.122.170 25 10.12.3.66 52903 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1826.0 25135 85.13.145.19 25 10.12.3.66 52920 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1827.0 25160 24.140.1.50 25 10.12.3.66 52961 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1827.0 25178 46.229.230.231 25 10.12.3.66 52925 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1828.0 25434 173.201.193.101 25 10.12.3.66 52960 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1829.0 25458 24.140.1.50 25 10.12.3.66 52961 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1829.0 25471 85.93.165.22 25 10.12.3.66 52909 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1829.0 25537 173.201.193.101 25 10.12.3.66 52960 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1829.0 25577 2.207.150.234 25 10.12.3.66 52911 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1830.0 25779 184.168.200.246 587 10.12.3.66 53002 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1831.0 26021 103.20.190.24 587 10.12.3.66 53000 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1831.0 26043 74.220.199.65 587 10.12.3.66 53004 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1833.0 26709 199.79.63.117 587 10.12.3.66 53009 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1833.0 26843 213.165.67.113 587 10.12.3.66 53012 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1835.0 27193 74.208.5.15 25 10.12.3.66 52999 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1836.0 27284 74.208.5.15 25 10.12.3.66 52999 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1837.0 27570 74.208.5.15 25 10.12.3.66 52992 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1838.0 27662 74.208.5.15 25 10.12.3.66 52992 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1843.0 28397 10.12.3.66 53013 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1869.0 34180 212.227.15.183 587 10.12.3.66 53014 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1873.0 34327 10.12.3.66 53041 91.207.181.106 8080 Unknown Traffic ET JA3 Hash - [Abuse.ch] Possible Dridex 3
1873.0 34372 52.96.166.134 25 10.12.3.66 53024 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1875.0 34602 93.157.100.35 587 10.12.3.66 53058 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1875.0 34617 195.186.120.54 587 10.12.3.66 53061 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1875.0 34624 213.165.67.124 587 10.12.3.66 53063 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1875.0 34653 213.153.32.148 25 10.12.3.66 53029 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1876.0 34797 213.153.32.148 25 10.12.3.66 53029 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1878.0 34953 212.227.15.145 25 10.12.3.66 53026 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1879.0 35021 195.246.127.106 25 10.12.3.66 53059 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1879.0 35028 212.227.15.145 25 10.12.3.66 53026 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1879.0 35050 52.96.166.134 25 10.12.3.66 53024 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1880.0 35111 195.246.127.106 25 10.12.3.66 53059 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1880.0 35141 212.227.15.145 25 10.12.3.66 53057 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1881.0 35205 212.227.15.145 25 10.12.3.66 53057 Generic Protocol Command Decode SURICATA SMTP invalid reply 3
1882.0 35246 96.114.157.81 587 10.12.3.66 53094 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1882.0 35294 108.167.153.167 587 10.12.3.66 53104 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1884.0 35642 74.208.5.15 587 10.12.3.66 53117 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1885.0 36220 74.220.199.65 587 10.12.3.66 53121 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1885.0 36270 199.79.63.117 587 10.12.3.66 53125 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1886.0 36689 213.165.67.113 587 10.12.3.66 53131 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1887.0 37507 219.99.220.143 587 10.12.3.66 53124 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
1889.0 39153 208.91.199.15 587 10.12.3.66 53135 Generic Protocol Command Decode SURICATA Applayer Detect protocol only one direction 3
Important Announcement: CS Personal is taking a break