311.exe File Sample Run Malware 61.160.247.7 Port 10311 PCAP file analysis

2016-09-26 23:08:13.776747 IP 192.168.1.102.58629 > 61.160.247.7.10311: Flags [S], seq 4053005950, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4f.@……..f=…..(G…~…… .b……………
2016-09-26 23:08:14.542273 IP 192.168.1.102.58629 > 61.160.247.7.10311: Flags [S], seq 4053005950, win 8192, options [mss 1460,nop,nop,sackOK], length 0
E..0f.@……..f=…..(G…~….p. .w   ……….
2016-09-26 23:08:15.246056 IP 192.168.1.102.58630 > 61.160.247.7.10311: Flags [S], seq 103664902, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4f.@……..f=…..(G.-…….. .w……………
2016-09-26 23:08:16.026744 IP 192.168.1.102.58630 > 61.160.247.7.10311: Flags [S], seq 103664902, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4f.@……..f=…..(G.-…….. .w……………
2016-09-26 23:08:16.808008 IP 192.168.1.102.58630 > 61.160.247.7.10311: Flags [S], seq 103664902, win 8192, options [mss 1460,nop,nop,sackOK], length 0
E..0f.@……..f=…..(G.-……p. ………….
2016-09-26 23:08:17.068923 IP 192.168.1.102.58630 > 61.160.247.7.10311: Flags [.], ack 3830112719, win 64240, length 0
E..(f.@……..f=…..(G.-…J..P………….
2016-09-26 23:08:17.071944 IP 192.168.1.102.58630 > 61.160.247.7.10311: Flags [P.], seq 0:401, ack 1, win 64240, length 401
E…f.@….l…f=…..(G.-…J..P…1….       ….. … ..’`.Windows XP…………………………………………………………………………………………………………………………
………………………………………………………………………………………………………………………………………………………………………………………….
…………………….
2016-09-26 23:08:17.276773 IP 192.168.1.102.58630 > 61.160.247.7.10311: Flags [P.], seq 0:401, ack 1, win 64240, length 401
E…f.@….k…f=…..(G.-…J..P…1….       ….. … ..’`.Windows XP…………………………………………………………………………………………………………………………
………………………………………………………………………………………………………………………………………………………………………………………….
…………………….