SHA256: 47920080055e1707943b1f993ad547e3b0ea0d1a15ff825c500ad5f934c082e6 File name: GHBuyd472?kTWXhebIfE=DvNOqYLy Detection ratio: 50 / 56 Analysis date: 2016-10-28 01:11:25 UTC ( 0 minutes ago ) Antivirus Result Update ALYac Trojan.Ransom.LockyCrypt 20161028 AVG Ransom_r.ACW 20161028 AVware Win32.Malware!Drop 20161027 Ad-Aware Trojan.Generic.17941000 20161028 AegisLab Heur.Advml.Gen!c 20161027 AhnLab-V3 Trojan/Win32.Locky.N2088417378 20161027 Antiy-AVL Trojan[Spy]/Win32.Zbot 20161027 Arcabit Trojan.Generic.D111C208 20161028 Avast Win32:Malware-gen 20161027 Avira (no cloud) TR/Crypt.Xpack.nvmw 20161027 Baidu Win32.Trojan.WisdomEyes.16070401.9500.9998 20161027 BitDefender Trojan.Generic.17941000 20161028 Bkav W32.Clod8c1.Trojan.b2ae 20161027 CAT-QuickHeal TrojanSpy.Zbot 20161027   2016-10-27 18:49:28.308802 IP 192.168.1.102.55548 > 200.83.4.62.80: Flags [P.], seq 0:318, ack 1, win 256, length 318: HTTP: GET /GHBuyd472?kTWXhebIfE=DvNOqYLy HTTP/1.1 E..feA@……..f.S.>…P..2…l.P…….GET /GHBuyd472?kTWXhebIfE=DvNOqYLy HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Accept-Language: en-us User-Agent: […]