SHA256:     fa33b75a4e095d6865420c7bd27d7233d7a0653896eb59611f3166466bbfb64a File name:     1 Detection ratio:     4 / 61 Analysis date:     2017-03-24 23:53:30 UTC ( 1 minute ago ) Antivirus     Result     Update CrowdStrike Falcon (ML)     malicious_confidence_100% (D)     20170130 Endgame     malicious (moderate confidence)     20170317 Invincea     worm.win32.kasidet.f     20170203 McAfee-GW-Edition     BehavesLike.Win32.ObfusRansom.dc     20170324     2017-03-24 21:59:48.601287 IP 192.168.1.102.53097 > 54.145.185.110.80: Flags [P.], seq 0:293, ack 1, win 256, length 293: HTTP: GET /search.php HTTP/1.1 E..M{*@….r…f6..n.i.P+….Y..P…….GET /search.php HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Accept-Language: en-us User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) Accept-Encoding: gzip, deflate Host: […]