Kelios Malware is back 176.103.55.73 chipdd2.exe PCAP file download traffic sample

https://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~Kelihos-X/detailed-analysis.aspx   2016-10-23 01:25:27.341585 IP 192.168.1.102.58900 > 176.103.55.73.80: Flags [P.], seq 0:287, ack 1, win 256, length 287: HTTP: GET /chipdd2.exe HTTP/1.1 E..Gio@……..f.g7I…PY..iH>..P….H..GET /chipdd2.exe HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, …

Read More