SHA256: fa33b75a4e095d6865420c7bd27d7233d7a0653896eb59611f3166466bbfb64a File name: 1 Detection ratio: 4 / 61 Analysis date: 2017-03-24 23:53:30 UTC ( 1 minute ago ) Antivirus Result Update CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20170130 Endgame malicious (moderate confidence) 20170317 Invincea worm.win32.kasidet.f 20170203 McAfee-GW-Edition BehavesLike.Win32.ObfusRansom.dc 20170324 2017-03-24 21:59:48.601287 IP 192.168.1.102.53097 > 54.145.185.110.80: Flags [P.], seq 0:293, ack 1, win 256, length 293: HTTP: GET /search.php HTTP/1.1 E..M{*@….r…f6..n.i.P+….Y..P…….GET /search.php HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Accept-Language: en-us User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) Accept-Encoding: gzip, deflate Host: […]