Notes / Threat IntelligenceAsterisk ManagerAsterisk Manager13 February 20221 min readCategories:threat-intelligenceTags:tcp5038asteriskContentsPacket detailsProtocolPortContent MD5Sample date timeASCIIHEXExternal referenceOriginal packetAdditional informationArchive note: This observation was migrated from the former threatdump project. It is retained as historical packet research and is not a live threat feed. Asterisk Manager remote accessPacket detailsProtocolTCPPort5038Content MD516d3f696-ec78-5894-8ff0-b6bd005e89faSample date time2022-02-13 17:37:48.994ASCIIAction: Login ActionID: 1 Username: cron Secret: amp109 Events: off HEX416374696f6e3a204c6f67696e0d0a416374696f6e49443a20310d0a557365726e616d653a2063726f6e0d0a5365637265743a20616d703130390d0a4576656e74733a206f66660d0a0d0a External referenceAsterisk MaganagerAction_LoginOriginal packetn/aAdditional informationCredentialscron:admin cron:123456 cron:amp109 cron:secret5 cron:1234 ← IBM DB2 Administration ServerLibreOffice Impress Remote Server →
