24 engines detected this file SHA-256 8feb981439774342fbe7c7a25c21d9cbae58f4cc13feb0ebf3657a85f2142158 File name YTkjdJH7w1.exe File size 591 KB Last analysis 2017-09-25 15:50:03 UTC AegisLab Ransom.Cerber.Smaly0!c Avast FileRepMalware AVG FileRepMalware Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 CrowdStrike Falcon malicious_confidence_100% (W) Cylance Unsafe 2017-09-25 16:50:29.002420 IP 192.168.1.102.57680 > 75.75.75.75.53: 45408+ A? bor.uz. (24) E..4…….”…fKKKK.P.5. #..`………..bor.uz….. 2017-09-25 16:50:29.529203 IP 192.168.1.102.56893 > 62.209.133.18.80: Flags [S], seq 2670765003, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0 E..4\.@….I…f>….=.P.0…….. …………….. 2017-09-25 16:50:29.719862 IP 192.168.1.102.56893 > 62.209.133.18.80: Flags [.], ack 1966844122, win 256, length 0 E..(\.@….T…f>….=.P.0..u;..P….A…….. 2017-09-25 16:50:29.731330 IP 192.168.1.102.56893 > 62.209.133.18.80: Flags [P.], seq 0:479, ack 1, win 256, length 479: HTTP: GET /YTkjdJH7w1 HTTP/1.1 […]