Honeypots.tk

Attack Report for Detail

Header

Time

2024/02/12, 19:30:20 (GMT)

Transaction ID

3QIFIIEPSU31ARL2

Service

sip

Location

US (United States)

Attacker

209.126.85.104

Classification

Invite

Harm Potential

High

Description

Invites a user to a call request

Content

- Received -------------------------------------------------------
INVITE sip:00441296924014@46.4.222.114 SIP/2.0
Via: SIP/2.0/TCP 209.126.85.104:54248;branch=z9hG4bK1234154791
Max-Forwards: 70
From: <sip:1000@46.4.222.114>;tag=1448880605
To: <sip:00441296924014@46.4.222.114>
Call-ID: 771598613-133574637-1567090173
CSeq: 1 INVITE
Contact: <sip:1000@209.126.85.104:54244>
Content-Type: application/sdp
Content-Length: 203
Allow: ACK, BYE, CANCEL, INFO, INVITE, MESSAGE, NOTIFY, OPTIONS, PRACK, REFER, REGISTER, SUBSCRIBE, UPDATE, PUBLISH
User-Agent: iphone 15

v=0
o=1000 16264 18299 IN IP4 0.0.0.0
s=iphone 15
c=IN IP4 0.0.0.0
t=0 0
m=audio 25282 RTP/AVP 0 101
a=rtpmap:0 pcmu/8000
a=rtpmap:8 pcma/8000
a=rtpmap:101 telephone-event/8000
a=fmtp:101 0-11


- Sended -------------------------------------------------------
SIP/2.0 400 Bad Request
Via: SIP/2.0/TCP 209.126.85.104:54248;branch=z9hG4bK1234154791;received=209.126.85.104
Max-Forwards: 70
From: <sip:1000@46.4.222.114>;tag=1448880605
To: <sip:00441296924014@46.4.222.114>;tag=kdzcz3hhom
Call-ID: 771598613-133574637-1567090173
CSeq: 1 INVITE
Contact: <sip:1000@209.126.85.104:54244>
Content-Type: application/sdp
Content-Length: 0
Allow: ACK, BYE, CANCEL, INFO, INVITE, MESSAGE, NOTIFY, OPTIONS, PRACK, REFER, REGISTER, SUBSCRIBE, UPDATE, PUBLISH
User-Agent: iphone 15

All details are coming from honeypot central database.

Please share your wishes, opinions and suggestions with us:

If you like, you can support
with your donations to us..

Donate

honeypots.tk ©2020