ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 1 result(s) out of 1 in 0.213 second(s)

  • 54.207.58.162:5060 (tcp/sip) - last seen on 2024-11-01 at 02:21:08 UTC

    • IP
      54.207.58.162
      Network
      54.206.0.0/15
      Domain(s)
      amazonaws.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      ec2-54-207-58-162.sa-east-1.compute.amazonaws.com
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      4d27833425122f0958f09570139f3a64 
    • SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;received=<srcip>;rport=47907\x0d
From: <sip:nm@nm>;tag=root\x0d
To: <sip:nm2@nm2>;tag=as01d7c604\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Server: Asterisk PBX - OpenS Tecnologia\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO, PUBLISH, MESSAGE\x0d
Supported: replaces, timer\x0d
Contact: <sip:<ip>:5060;transport=tcp>\x0d
Accept: application/sdp\x0d
Content-Length: 0\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-11-01T02:21:08.000Z",
   "app" : {
      "length" : 420
   },
   "asn" : "AS16509",
   "city" : "S\u00e3o Paulo",
   "country" : "BR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;received=<srcip>;rport=47907\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nTo: <sip:nm2@nm2>;tag=as01d7c604\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nServer: Asterisk PBX - OpenS Tecnologia\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO, PUBLISH, MESSAGE\\x0d\nSupported: replaces, timer\\x0d\nContact: <sip:<ip>:5060;transport=tcp>\\x0d\nAccept: application/sdp\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "4d27833425122f0958f09570139f3a64",
   "datammh3" : -1432874491,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "AMAZON-GRU",
      "organization" : "Amazon Data Services Brazil",
      "subnet" : "54.207.0.0/16"
   },
   "host" : [
      "ec2-54-207-58-162"
   ],
   "hostname" : [
      "ec2-54-207-58-162.sa-east-1.compute.amazonaws.com"
   ],
   "ip" : "54.207.58.162",
   "ipv6" : "false",
   "latitude" : "-23.5335",
   "location" : "-23.5335,-46.6359",
   "longitude" : "-46.6359",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "reverse" : [
      "ec2-54-207-58-162.sa-east-1.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-01",
   "source" : "datascan",
   "subdomains" : [
      "compute.amazonaws.com",
      "sa-east-1.compute.amazonaws.com"
   ],
   "subnet" : "54.206.0.0/15",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}