SHA256: c686cd371f5a2325a37622ee9eed194863299d091b15e4dca2621766359d2ecb File name: e-pointer-cn.exe Detection ratio: 2 / 56 Analysis date: 2016-10-29 07:15:48 UTC ( 0 minutes ago ) AVware Trojan.Win32.Generic!BT 20161029 VIPRE Trojan.Win32.Generic!BT 20161029 2016-10-29 01:34:10.924411 IP 192.168.1.102.64320 > 218.93.211.9.80: Flags [P.], seq 0:299, ack 1, win 256, length 299: HTTP: GET /down/e-pointer-cn.exe HTTP/1.1 E..SBY@…G….f.].     .@.P…Z….P…….GET /down/e-pointer-cn.exe HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Accept-Language: en-us User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) Accept-Encoding: gzip, deflate Host: sqdx.newhua.com Connection: Keep-Alive 2016-10-29 01:34:10.924425 IP 192.168.1.102.64320 > 218.93.211.9.80: Flags [.], ack 1, win 256, options [nop,nop,sack 1 {0:1}], length 0 E..4BZ@…H….f.].     .@.P………….y….. — E..(..@……..f.”…B.P6…….P….L…….. 2016-10-29 01:35:14.148520 IP 192.168.1.102.64322 […]