Honeypots.tk

Attack Report for Detail

Header

Time

2023/05/27, 00:50:10 (GMT)

Transaction ID

RB1SMRDA7X83VRNB

Service

sip

Location

US (United States)

Attacker

23.148.145.29

Classification

Invite

Harm Potential

High

Description

Invites a user to a call request

Content

- Received -------------------------------------------------------
INVITE sip:+33177686485@46.4.222.114 SIP/2.0
Via: SIP/2.0/TCP 23.148.145.29:9795;branch=z9hG4bK-524287-1---93599c00e4789c7d;rport
Max-Forwards: 70
Contact: <sip:101@23.148.145.29:9795;ob;transport=tcp>;+sip.instance="<urn:uuid:6308E59A-A94B-7F2F-11F1-BBABC0C3C343>"
To: <sip:+33177686485@46.4.222.114>
From: "101"<sip:101@46.4.222.114>;tag=c8469201
Call-ID: TZQ9nVy_BH9bO1y4wpUYPw..
CSeq: 1 INVITE
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, REGISTER, SUBSCRIBE, INFO, PUBLISH
Content-Type: application/sdp
Supported: replaces, outbound, path
User-Agent: PortSIP VoIP SDK 11.2
Allow-Events: hold, talk, conference
Content-Length: 275

v=0
o=- 444720322 1 IN IP4 23.148.145.29
s=portsip.com
c=IN IP4 23.148.145.29
t=0 0
m=audio 20004 RTP/AVP 0 8 18 101
a=rtpmap:0 PCMU/8000
a=rtpmap:8 PCMA/8000
a=rtpmap:18 G729/8000
a=fmtp:18 annexb=no
a=rtpmap:101 telephone-event/8000
a=fmtp:101 0-16
a=sendrecv


- Sended -------------------------------------------------------
SIP/2.0 400 Bad Request
Via: SIP/2.0/TCP 23.148.145.29:9795;branch=z9hG4bK-524287-1---93599c00e4789c7d;received=23.148.145.29;rport=49805
Max-Forwards: 70
Contact: <sip:101@23.148.145.29:9795;ob;transport=tcp>;+sip.instance="<urn:uuid:6308E59A-A94B-7F2F-11F1-BBABC0C3C343>"
To: <sip:+33177686485@46.4.222.114>;tag=msxdqovemu
From: "101"<sip:101@46.4.222.114>;tag=c8469201
Call-ID: TZQ9nVy_BH9bO1y4wpUYPw..
CSeq: 1 INVITE
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, NOTIFY, MESSAGE, REGISTER, SUBSCRIBE, INFO, PUBLISH
Content-Type: application/sdp
Supported: replaces, outbound, path
User-Agent: PortSIP VoIP SDK 11.2
Allow-Events: hold, talk, conference
Content-Length: 0

All details are coming from honeypot central database.

Please share your wishes, opinions and suggestions with us:

If you like, you can support
with your donations to us..

Donate

honeypots.tk ©2020