SHA256: 01fd9a6245c93f25ec2202d06bb40dbdcb5a3c1a0e5fb3db54c4d6253f9f7f4c File name: 2lm5xNQU.exe Detection ratio: 52 / 61 Analysis date: 2017-05-21 21:29:52 UTC ( 0 minutes ago ) Ad-Aware Gen:Variant.Ransom.Sage.110 20170521 AegisLab Gen.Variant.Ransom!c 20170521 AhnLab-V3 Trojan/Win32.SageCrypt.R196517 20170521 ALYac Trojan.Ransom.Sage 20170520 Antiy-AVL Trojan/Win32.TSGeneric 20170521 Arcabit Trojan.Ransom.Sage.110 20170521 Avast Win32:Malware-gen 20170521 AVG Ransom_r.BRQ 20170521 Avira (no cloud) TR/Agent.bkkbc 20170521 AVware Trojan.Win32.Generic!BT 20170521 Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20170503 BitDefender Gen:Variant.Ransom.Sage.110 20170521 2017-05-21 15:59:43.097424 IP 192.168.1.102.55377 > 104.24.122.74.80: Flags [P.], seq 0:404, ack 1, win 256, length 404: HTTP: GET /upload/2lm5xNQU.exe HTTP/1.1 E…J(@… ….fh.zJ.Q.Pmj..z..    P…/…GET /upload/2lm5xNQU.exe HTTP/1.1 Accept: image/jpeg, application/x-ms-application, image/gif, application/xaml+xml, image/pjpeg, application/x-ms-xbap, */* Accept-Language: en-US User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT […]