Inst1.exe Trojan Downloader Loads 90.exe Unknown Malware PCAP file download   2016-09-20 09:02:11.821468 IP 192.168.1.102.59656 > 192.168.1.100.80: Flags [P.], seq 1:336, ack 1, win 256, length 335: HTTP: GET /captured/inst1.exe HTTP/1.1 E..w.[………f…d…P#7….U.P…….GET /captured/inst1.exe HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Referer: http://192.168.1.100/captured/ Accept-Language: en-us User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) Accept-Encoding: gzip, deflate Host: 192.168.1.100 Connection: Keep-Alive 2016-09-20 09:02:11.821487 IP 192.168.1.100.80 > 192.168.1.102.59656: Flags [.], ack 336, win 237, length 0 — E..(.,….LH…f]….&..z..*/..;P… ……… 2016-09-20 09:03:55.606661 IP 192.168.1.102.59686 > 93.171.202.162.443: Flags [.], ack 549660, win 2268, length 0 E..(.-….LG…f]….&..z..*/..EP…………. 2016-09-20 09:03:55.886564 IP 192.168.1.102.62247 > 75.75.75.75.53: 40557+ A? […]