SHA256: 439f3181ca4d64c15041b0e011e5b1769f79e414b9ad78e26c42b39c2253b005 File name: shouhu.exe Detection ratio: 31 / 56 Analysis date: 2016-11-03 00:43:25 UTC ( 0 minutes ago ) AegisLab Troj.W32.Sasfis.lqzi 20161102 AhnLab-V3 Malware/Win32.Generic.N2142312657 20161102 Antiy-AVL Trojan/Win32.TSGeneric 20161103 Arcabit Trojan.Zusy.D313F0 20161103 Avast Win32:Malware-gen 20161103 Baidu Win32.Trojan.WisdomEyes.16070401.9500.9557 20161101 BitDefender Gen:Variant.Zusy.201712 20161103 Bkav W32.Clod32a.Trojan.2bca 20161102 Comodo Worm.Win32.Dropper.RA 20161102 CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20161024 Cyren W32/Agent.EW.gen!Eldorado 20161102 Emsisoft Gen:Variant.Zusy.201712 (B) 20161102 F-Prot W32/Agent.EW.gen!Eldorado 20161102 F-Secure Trojan:W32/DelfInject.R 20161102 Fortinet Riskware/Qhost 20161102 GData Gen:Variant.Zusy.201712 20161102 Invincea trojan.win32.startpage.agm 20161018 2016-11-02 19:27:46.918199 IP 192.168.1.102.53070 > 42.51.155.153.80: Flags [P.], seq 0:313, ack 1, win 256, length 313: HTTP: GET /yehuo/shouhu.exe?id=0.671988278308449 HTTP/1.1 E..a.6@…T….f*3…N.P.a.j..b.P…….GET /yehuo/shouhu.exe?id=0.671988278308449 HTTP/1.1 Accept: application/x-shockwave-flash, […]