Malware Sample host.exe 61.160.247.7 port 6009 C2 Traffic PCAP file download

Download Attachments

  • 1 pcap host_exe
    Date added: September 27, 2016 3:40 am Added by: admin File size: 19 KB Downloads: 88

2016-09-26 22:02:42.191272 IP 192.168.1.102.58408 > 61.160.247.7.6009: Flags [S], seq 2560074398, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4e.@….|…f=….(.y………. .!……………
2016-09-26 22:02:42.962231 IP 192.168.1.102.58408 > 61.160.247.7.6009: Flags [S], seq 2560074398, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4e.@….{…f=….(.y………. .!……………
2016-09-26 22:02:43.727964 IP 192.168.1.102.58408 > 61.160.247.7.6009: Flags [S], seq 2560074398, win 8192, options [mss 1460,nop,nop,sackOK], length 0
E..0e.@….~…f=….(.y……..p. .5………..
2016-09-26 22:02:44.541115 IP 192.168.1.102.58409 > 61.160.247.7.6009: Flags [S], seq 190185934, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4e.@….y…f=….).y.V…….. .O……………
2016-09-26 22:02:44.803969 IP 192.168.1.102.58409 > 61.160.247.7.6009: Flags [.], ack 3912314119, win 256, length 0
E..(e.@……..f=….).y.V…1-.P………….
2016-09-26 22:02:44.807034 IP 192.168.1.102.58409 > 61.160.247.7.6009: Flags [P.], seq 0:414, ack 1, win 256, length 414
E…e.@……..f=….).y.V…1-.P…h….       ….. … ..’`…………..Windows XP……………………………………………………………………………………………………………..
………………………………………………………………………………………………………………………………………………………………………………………….
………………………………..
2016-09-26 22:03:00.072601 IP 192.168.1.102.58410 > 61.160.247.7.6009: Flags [S], seq 3262897050, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4e.@….v…f=….*.y.{…….. ……………..
2016-09-26 22:03:00.837306 IP 192.168.1.102.58410 > 61.160.247.7.6009: Flags [S], seq 3262897050, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4e.@….u…f=….*.y.{…….. ……………..
2016-09-26 22:03:01.603006 IP 192.168.1.102.58410 > 61.160.247.7.6009: Flags [S], seq 3262897050, win 65535, options [mss 1460,nop,nop,sackOK], length 0
E..0e.@….x…f=….*.y.{……p……………

Leave a Reply