Text Example

SCRWIN.exe TOR Botnet Malware Traffic Analysis PCAP File Download

Download Attachments

  • 1 pcap scrwin
    Date added: September 27, 2016 12:52 am Added by: admin File size: 5 MB Downloads: 108

2016-09-20 18:13:42.660493 IP 192.168.56.11.52046 > 154.35.32.5.443: Flags [P.], seq 1:193, ack 1, win 256, length 192
E…..@…F…8..# ..N…?..%…P……………….<b…2u..0p..9` ..&…(…………+./.
.       …..3.9./.5…..x………www.4apd.com………
.4.2………….       .
……………………………..#……………………………
2016-09-20 18:13:42.660735 IP 154.35.32.5.443 > 192.168.56.11.52046: Flags [.], ack 193, win 237, length 0
E..(.2@.@….# …8….N%….?..P…kl……..
2016-09-20 18:13:43.787483 IP 154.35.32.5.443 > 192.168.56.11.52046: Flags [P.], seq 1:758, ack 193, win 237, length 757
E….3@.@….# …8….N%….?..P…8[……>…:..*yR…….>..O…………….b…/………………………………0…0..-…….;].#F_..0..    *.H……..0″1 0…U….www.jcbb3ippnulwo77.com0…160907000000Z..160926000000Z0’1%0#..U….www.27bcw64j6q2qfhnymx4h.net0..0..  *.H…………0………Q….y………..$I.d.r.[.c.!4.Al..    …..*El&@..ebh.@s..l;N.”Z..7….o..BV……………   .. C…P…:…f0A..:.. .y.Qe3..e!}…..0..     *.H……………+&……. I5…._…O…Tc3.%.0…\…I..
K\F.Ar………v….].7….I.@………….a..g.b.-.c.Uj.^..4..e.#.8…..H.mw.r.X7………….A..`h.JjF…5…57p.~../…..L.=eP.%.uR..kD…H.X……….).N..Q……cE….=……=y.#..Ru\……..@jc.4.S.;..oP.Z2……4NG.v..B…..
Js…+..>…/?. -…HO….>,….E.2X…s79…Z…..k.9uu..}W……….

 

2016-09-20 18:16:10.862693 IP 192.168.56.11.52070 > 108.61.96.39.9001: Flags [R.], seq 5252, ack 4478, win 0, length 0
E..(    .@…,…8.l=`’.f#).]r/;…P…….
2016-09-20 18:16:12.042736 IP 192.168.56.11.63891 > 8.8.8.8.53: 19564+ A? whatismyipaddress.com. (39)
E..C    …..(0..8……..5./..Ll………..whatismyipaddress.com…..
2016-09-20 18:16:14.655721 IP 8.8.8.8.53 > 192.168.56.11.63891: 19564 1/0/0 A 23.198.16.207 (55)
E..S.c@.@.:s……8..5…?@.Ll………..whatismyipaddress.com…………..<……
2016-09-20 18:16:15.534698 IP 8.8.8.8.53 > 192.168.56.11.63891: 19564 1/0/0 A 23.198.16.207 (55)
E..S..@.@.:K……8..5…?@.Ll………..whatismyipaddress.com…………..<……
2016-09-20 18:16:15.534758 IP 192.168.56.11 > 8.8.8.8: ICMP 192.168.56.11 udp port 63891 unreachable, length 91
E..o    …..(…8………….E..S..@.@.:K……8..5…?@.Ll………..whatismyipaddress.com…………..<……
2016-09-20 18:16:16.535538 IP 8.8.8.8.53 > 192.168.56.11.63891: 19564 1/0/0 A 23.198.16.207 (55)
E..S.   @.@.9…….8..5…?@.Ll………..whatismyipaddress.com…………..<……
2016-09-20 18:16:16.535619 IP 192.168.56.11 > 8.8.8.8: ICMP 192.168.56.11 udp port 63891 unreachable, length 91
E..o    …..(…8………….E..S.    @.@.9…….8..5…?@.Ll………..whatismyipaddress.com…………..<……
2016-09-20 18:16:18.532911 IP 8.8.8.8.53 > 192.168.56.11.63891: 19564 1/0/0 A 23.198.16.207 (55)
E..S.S@.@.9…….8..5…?@.Ll………..whatismyipaddress.com…………..<……
2016-09-20 18:16:18.532998 IP 192.168.56.11 > 8.8.8.8: ICMP 192.168.56.11 udp port 63891 unreachable, length 91
E..o    …..(…8………….E..S.S@.@.9…….8..5…?@.Ll………..whatismyipaddress.com…………..<……

 

Leave a Reply