Honeypots.tk

Attack Report for Detail

Header

Time

2024/05/06, 19:44:33 (GMT)

Transaction ID

NH9D6DJ2M5H8UIOI

Service

sip

Location

US (United States)

Attacker

208.109.188.20

Classification

Invite

Harm Potential

High

Description

Invites a user to a call request

Content

- Received -------------------------------------------------------
INVITE sip:202012313803104@46.4.222.114 SIP/2.0
Via: SIP/2.0/TCP 208.109.188.20:62409;branch=7b9uh86o310588c4roy9ms58m6e6svfyhbphfmjq5ehnadkuflkwk5atbu7ifzw3uobemnt;rport
From:  <sip:2024@46.4.222.114>;tag=2c04477e
To:  <sip:202012313803104@46.4.222.114>
Contact: <sip:2024@208.109.188.20:62409;transport=TCP>;expires=60
Call-ID: 48941640f405b381af7549859b8b3fd8
CSeq: 1 INVITE
Max-Forwards: 70
User-Agent: cisco
Allow: INVITE, REGISTER, ACK, CANCEL, BYE, NOTIFY, REFER, OPTIONS, INFO, SUBSCRIBE, UPDATE, PRACK, MESSAGE
Content-Length: 0


- Sended -------------------------------------------------------
SIP/2.0 400 Bad Request
Via: SIP/2.0/TCP 208.109.188.20:62409;branch=7b9uh86o310588c4roy9ms58m6e6svfyhbphfmjq5ehnadkuflkwk5atbu7ifzw3uobemnt;received=208.109.188.20;rport=62409
From:  <sip:2024@46.4.222.114>;tag=2c04477e
To:  <sip:202012313803104@46.4.222.114>;tag=po44cr9n4e
Contact: <sip:2024@208.109.188.20:62409;transport=TCP>;expires=60
Call-ID: 48941640f405b381af7549859b8b3fd8
CSeq: 1 INVITE
Max-Forwards: 70
User-Agent: cisco
Allow: INVITE, REGISTER, ACK, CANCEL, BYE, NOTIFY, REFER, OPTIONS, INFO, SUBSCRIBE, UPDATE, PRACK, MESSAGE
Content-Length: 0

All details are coming from honeypot central database.

Please share your wishes, opinions and suggestions with us:

If you like, you can support
with your donations to us..

Donate

honeypots.tk ©2020