Honeypots.tk

Attack Report for Detail

Header

Time

2024/03/26, 02:02:07 (GMT)

Transaction ID

GG3XYILW3BX62T8Z

Service

sip

Location

HK (Hong Kong)

Attacker

193.107.216.241

Classification

Invite

Harm Potential

High

Description

Invites a user to a call request

Content

- Received -------------------------------------------------------
INVITE sip:+442038077817@46.4.222.114:5060;transport=tcp SIP/2.0
To: <sip:+442038077817@46.4.222.114:5060>
From: <sip:1001@46.4.222.114:5060>;tag=e6113b26
Via: SIP/2.0/TCP 193.107.216.241:29557;branch=z9hG4bK-3926E1A3-998782876-1--3926E1A3;rport
Call-ID: 3926E1A3
CSeq: 1 INVITE
Contact: <sip:1001@193.107.216.241:29557;transport=TCP>
Content-Type: application/sdp
Max-Forwards: 70
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, SUBSCRIBE, INFO
User-Agent: Cisco-SIPGateway/IOS-12.x
Content-Length: 0


- Sended -------------------------------------------------------
SIP/2.0 400 Bad Request
To: <sip:+442038077817@46.4.222.114:5060>;tag=27cym5fyqh
From: <sip:1001@46.4.222.114:5060>;tag=e6113b26
Via: SIP/2.0/TCP 193.107.216.241:29557;branch=z9hG4bK-3926E1A3-998782876-1--3926E1A3;received=193.107.216.241;rport=49249
Call-ID: 3926E1A3
CSeq: 1 INVITE
Contact: <sip:1001@193.107.216.241:29557;transport=TCP>
Content-Type: application/sdp
Max-Forwards: 70
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, SUBSCRIBE, INFO
User-Agent: Cisco-SIPGateway/IOS-12.x
Content-Length: 0

All details are coming from honeypot central database.

Please share your wishes, opinions and suggestions with us:

If you like, you can support
with your donations to us..

Donate

honeypots.tk ©2020