Attack Report for Detail

Header

Time

2022/11/16, 13:54:25 (GMT)

Transaction ID

MX2KFIJQW1Y2LT58

Service

sip

Location

US (United States)

Attacker

157.97.134.110

Classification

Invite

Harm Potential

High

Description

Invites a user to a call request

Content

- Received -------------------------------------------------------
INVITE sip:00015012394772@checker.muratti66.com SIP/2.0
Via: SIP/2.0/TCP 10.5.0.2:6482;branch=z9hG4bK-524287-1---b415092339612148;rport
Max-Forwards: 70
Contact: <sip:10000@10.5.0.2:6482;transport=tcp>;+sip.instance="<urn:uuid:730FF22E-9405-0196-762C-D5AC6A0ACE46>"
To: <sip:00015012394772@checker.muratti66.com>
From: "10000"<sip:10000@checker.muratti66.com>;tag=6a326b30
Call-ID: T3CcQxd8Oe7bzuv96hLOoA..
CSeq: 1 INVITE
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, REGISTER, SUBSCRIBE, INFO
Content-Type: application/sdp
Supported: replaces
User-Agent: Cisco
Allow-Events: hold, talk, conference
Content-Length: 265

v=0
o=- 428178561 1 IN IP4 10.5.0.2
s=portsip.com
c=IN IP4 10.5.0.2
t=0 0
m=audio 20016 RTP/AVP 0 8 18 101
a=rtpmap:0 PCMU/8000
a=rtpmap:8 PCMA/8000
a=rtpmap:18 G729/8000
a=fmtp:18 annexb=no
a=rtpmap:101 telephone-event/8000
a=fmtp:101 0-16
a=sendrecv


- Sended -------------------------------------------------------
SIP/2.0 400 Bad Request
Via: SIP/2.0/TCP 10.5.0.2:6482;branch=z9hG4bK-524287-1---b415092339612148;received=157.97.134.110;rport=45776
Max-Forwards: 70
Contact: <sip:10000@10.5.0.2:6482;transport=tcp>;+sip.instance="<urn:uuid:730FF22E-9405-0196-762C-D5AC6A0ACE46>"
To: <sip:00015012394772@checker.muratti66.com>;tag=jz2vdwhxr3
From: "10000"<sip:10000@checker.muratti66.com>;tag=6a326b30
Call-ID: T3CcQxd8Oe7bzuv96hLOoA..
CSeq: 1 INVITE
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, REGISTER, SUBSCRIBE, INFO
Content-Type: application/sdp
Supported: replaces
User-Agent: Cisco
Allow-Events: hold, talk, conference
Content-Length: 0

All details are coming from honeypot central database.

Please share your wishes, opinions and suggestions with us:

If you like, you can support
with your donations to us..

Donate