Analysis Date2015-09-28 08:00:53
MD5836fee0770ec3c12e8fee959c4f71e1e
SHA19808f6b15f5d3d8b2164689ef9013e4ca4c8cbbe

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.text md5: 219f601da6d5527f77d73eb3394f2fef sha1: 987af9f36decac216b643a9f16673b76dedcbbc1 size: 12288
Section.rdata md5: cdfccc9b20b60a70ed5012b7027bfd3f sha1: eb02468eb38d056c43649ecad1c42a24c3f57efb size: 8192
Section.data md5: bde1a42de12946cd5e50e0951c19a154 sha1: 09dd760e562458b8619d6eae9ab1b48f2dee6310 size: 4096
Section.rsrc md5: adc8f8742e7932893414983c7a95c2dc sha1: 51688c4aa1e70ad44d1b2a8d5ff636a4c062f0e4 size: 8192
Timestamp2014-02-13 18:33:57
VersionLegalCopyright: Copyright ? 2014
InternalName: Apriori
FileVersion: 1, 0, 0, 1
CompanyName:
PrivateBuild:
LegalTrademarks:
Comments:
ProductName: Apriori
SpecialBuild:
ProductVersion: 1, 0, 0, 1
FileDescription: Apriori
OriginalFilename: Apriori.exe
PackerMicrosoft Visual C++ v6.0
PEhashea06a0bdfb55cbe10217b431b714ff4ba4fdf678
IMPhash77838c536c9181d9bd3be2af0fd461a2
AVRisingno_virus
AVMcafeeGeneric-FAUT!836FEE0770EC
AVAvira (antivir)TR/Dropper.Gen
AVTwisterTrojan.76724D16F6021B9D
AVAd-AwareGen:Variant.Symmi.39003
AVAlwil (avast)Inject-BGR [Trj]
AVEset (nod32)Win32/Injector.AXUU
AVGrisoft (avg)Generic_r.DOW
AVSymantecTrojan.Zbot
AVFortinetW32/Zbot.AGV!tr.dldr
AVBitDefenderGen:Variant.Symmi.39003
AVK7Trojan ( 004955e31 )
AVMicrosoft Security EssentialsTrojan:Win32/Bagsu!rfn:VirTool:Win32/CeeInject.gen!KK
AVMicroWorld (escan)Gen:Variant.Symmi.39003
AVMalwareBytesTrojan.Agent.ED
AVAuthentiumW32/Trojan.UCAH-2417
AVFrisk (f-prot)W32/Trojan2.OSQS
AVIkarusTrojan-Downloader.Win32.Upatre
AVEmsisoftGen:Variant.Symmi.39003
AVZillya!Trojan.Zbot.Win32.148247
AVKasperskyTrojan.Win32.Generic
AVTrend MicroTROJ_MALKRYPT.SM
AVCAT (quickheal)TrojanPWS.Zbot.AP4
AVVirusBlokAda (vba32)no_virus
AVPadvishno_virus
AVBullGuardGen:Variant.Symmi.39003
AVArcabit (arcavir)Gen:Variant.Symmi.39003
AVClamAVno_virus
AVDr. WebTrojan.PWS.Panda.4603
AVF-SecureGen:Variant.Symmi.39003
AVCA (E-Trust Ino)Win32/CInject.FDEHBK

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Creates ProcessC:\malware.exe

Process
↳ C:\malware.exe

RegistryHKEY_CURRENT_USER\SOFTWARE\NVIDIA Corporation\Global\nvUpdSrv\value ➝
20140215\\x00
Creates File\Device\Afd\Endpoint
Creates MutexGlobal\MD7H82HHF7EH2D73

Network Details:

HTTP GEThttp://95.131.139.225:26545/stat?uptime=100&downlink=1111&uplink=1111&id=003569E3&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://93.89.228.105:41023/stat?uptime=100&downlink=1111&uplink=1111&id=00357E17&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://50.115.118.68:35269/stat?uptime=100&downlink=1111&uplink=1111&id=003591BE&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://192.225.208.11:32965/stat?uptime=100&downlink=1111&uplink=1111&id=0035A575&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://184.73.246.12:42436/stat?uptime=100&downlink=1111&uplink=1111&id=0035B94B&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://80.252.188.228:30708/stat?uptime=100&downlink=1111&uplink=1111&id=0035CD02&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://5.45.75.36:13737/stat?uptime=100&downlink=1111&uplink=1111&id=0035E0C9&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://68.169.110.227:44659/stat?uptime=100&downlink=1111&uplink=1111&id=0035F48F&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://195.12.48.190:13983/stat?uptime=100&downlink=1111&uplink=1111&id=00360865&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://188.135.10.41:10727/stat?uptime=100&downlink=1111&uplink=1111&id=00361C1C&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://202.102.58.205:39939/stat?uptime=100&downlink=1111&uplink=1111&id=00362FE3&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://46.32.255.157:62059/stat?uptime=100&downlink=1111&uplink=1111&id=003643B9&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://75.101.129.31:33391/stat?uptime=100&downlink=1111&uplink=1111&id=0036579F&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://198.199.73.240:27936/stat?uptime=100&downlink=1111&uplink=1111&id=00366B65&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://176.28.54.73:31571/stat?uptime=100&downlink=1111&uplink=1111&id=00367F4B&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://96.126.119.85:30821/stat?uptime=100&downlink=1111&uplink=1111&id=00369311&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://162.213.197.249:48372/stat?uptime=100&downlink=1111&uplink=1111&id=0036A6E7&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://95.131.139.225:26545/stat?uptime=100&downlink=1111&uplink=1111&id=0036BABE&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://108.168.128.107:53109/stat?uptime=100&downlink=1111&uplink=1111&id=0036CE84&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://93.115.83.215:49191/stat?uptime=100&downlink=1111&uplink=1111&id=0036E24B&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://162.242.216.17:19413/stat?uptime=100&downlink=1111&uplink=1111&id=0036F611&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://178.32.186.69:48011/stat?uptime=100&downlink=1111&uplink=1111&id=003709C8&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://5.45.75.36:13737/stat?uptime=100&downlink=1111&uplink=1111&id=00371D8E&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://54.241.28.66:21074/stat?uptime=100&downlink=1111&uplink=1111&id=00373136&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://216.234.108.157:60098/stat?uptime=100&downlink=1111&uplink=1111&id=003744DD&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://184.72.33.126:42386/stat?uptime=100&downlink=1111&uplink=1111&id=003758A3&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://109.73.172.108:16193/stat?uptime=100&downlink=1111&uplink=1111&id=00376C5A&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://80.252.188.228:30708/stat?uptime=100&downlink=1111&uplink=1111&id=00378030&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://178.79.132.245:60541/stat?uptime=100&downlink=1111&uplink=1111&id=003793E7&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://209.222.19.107:25189/stat?uptime=100&downlink=1111&uplink=1111&id=0037A79E&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://222.82.218.14:45570/stat?uptime=100&downlink=1111&uplink=1111&id=0037BB65&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://213.174.153.118:27738/stat?uptime=100&downlink=1111&uplink=1111&id=0037CF1C&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://62.116.186.76:12825/stat?uptime=100&downlink=1111&uplink=1111&id=0037E2D2&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://178.79.132.245:60541/stat?uptime=100&downlink=1111&uplink=1111&id=0037F699&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://62.116.186.76:12825/stat?uptime=100&downlink=1111&uplink=1111&id=00380A6F&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://184.82.9.4:10925/stat?uptime=100&downlink=1111&uplink=1111&id=00381E36&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://162.13.47.94:29296/stat?uptime=100&downlink=1111&uplink=1111&id=0038320C&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://109.104.94.2:11754/stat?uptime=100&downlink=1111&uplink=1111&id=003845C3&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://54.241.28.66:21074/stat?uptime=100&downlink=1111&uplink=1111&id=00385999&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://68.169.110.227:44659/stat?uptime=100&downlink=1111&uplink=1111&id=00386D50&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://192.225.208.11:32965/stat?uptime=100&downlink=1111&uplink=1111&id=00388106&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://80.91.80.222:32136/stat?uptime=100&downlink=1111&uplink=1111&id=003894BD&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://202.125.108.1:40015/stat?uptime=100&downlink=1111&uplink=1111&id=0038A884&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://209.124.64.2:12898/stat?uptime=100&downlink=1111&uplink=1111&id=0038BC4A&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://216.35.160.138:43782/stat?uptime=100&downlink=1111&uplink=1111&id=0038D011&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://184.72.33.126:42386/stat?uptime=100&downlink=1111&uplink=1111&id=0038E3C8&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://216.234.108.157:60098/stat?uptime=100&downlink=1111&uplink=1111&id=0038F78E&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://82.211.13.90:22512/stat?uptime=100&downlink=1111&uplink=1111&id=00390B45&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://93.89.228.105:41023/stat?uptime=100&downlink=1111&uplink=1111&id=00391EFC&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://162.13.15.172:54663/stat?uptime=100&downlink=1111&uplink=1111&id=003932C2&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://54.241.28.66:21074/stat?uptime=100&downlink=1111&uplink=1111&id=00394679&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://46.229.171.130:13586/stat?uptime=100&downlink=1111&uplink=1111&id=00395A4F&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://115.112.200.88:21160/stat?uptime=100&downlink=1111&uplink=1111&id=00396E16&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://75.101.129.31:33391/stat?uptime=100&downlink=1111&uplink=1111&id=003981DC&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://222.82.218.14:45570/stat?uptime=100&downlink=1111&uplink=1111&id=003995B3&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://205.186.143.129:21583/stat?uptime=100&downlink=1111&uplink=1111&id=0039A969&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://96.126.119.85:30821/stat?uptime=100&downlink=1111&uplink=1111&id=0039BD30&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://115.112.250.34:33906/stat?uptime=100&downlink=1111&uplink=1111&id=0039D0F6&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://199.71.40.135:47881/stat?uptime=100&downlink=1111&uplink=1111&id=0039E4BD&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://162.243.221.232:46248/stat?uptime=100&downlink=1111&uplink=1111&id=0039F883&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://82.98.104.7:30871/stat?uptime=100&downlink=1111&uplink=1111&id=003A0C5A&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://72.52.11.117:20357/stat?uptime=100&downlink=1111&uplink=1111&id=003A2001&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://31.170.165.5:47061/stat?uptime=100&downlink=1111&uplink=1111&id=003A33A8&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://94.242.250.32:32048/stat?uptime=100&downlink=1111&uplink=1111&id=003A4740&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://74.113.233.180:29380/stat?uptime=100&downlink=1111&uplink=1111&id=003A5AD7&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://202.158.49.22:12410/stat?uptime=100&downlink=1111&uplink=1111&id=003A6E6F&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
HTTP GEThttp://108.162.201.43:17659/stat?uptime=100&downlink=1111&uplink=1111&id=003A8207&statpass=bpass&version=20140215&features=30&guid=1697b3bf-fc9d-4fe8-8481-07fe869fa957&comment=20140215&p=0&s=
User-Agent:
Flows TCP192.168.1.1:1031 ➝ 95.131.139.225:26545
Flows TCP192.168.1.1:1031 ➝ 95.131.139.225:26545
Flows TCP192.168.1.1:1032 ➝ 93.89.228.105:41023
Flows TCP192.168.1.1:1033 ➝ 50.115.118.68:35269
Flows TCP192.168.1.1:1034 ➝ 192.225.208.11:32965
Flows TCP192.168.1.1:1035 ➝ 184.73.246.12:42436
Flows TCP192.168.1.1:1036 ➝ 80.252.188.228:30708
Flows TCP192.168.1.1:1037 ➝ 5.45.75.36:13737
Flows TCP192.168.1.1:1038 ➝ 68.169.110.227:44659
Flows TCP192.168.1.1:1039 ➝ 195.12.48.190:13983
Flows TCP192.168.1.1:1040 ➝ 188.135.10.41:10727
Flows TCP192.168.1.1:1041 ➝ 202.102.58.205:39939
Flows TCP192.168.1.1:1042 ➝ 46.32.255.157:62059
Flows TCP192.168.1.1:1043 ➝ 75.101.129.31:33391
Flows TCP192.168.1.1:1044 ➝ 198.199.73.240:27936
Flows TCP192.168.1.1:1045 ➝ 176.28.54.73:31571
Flows TCP192.168.1.1:1046 ➝ 96.126.119.85:30821
Flows TCP192.168.1.1:1047 ➝ 162.213.197.249:48372
Flows TCP192.168.1.1:1048 ➝ 95.131.139.225:26545
Flows TCP192.168.1.1:1049 ➝ 108.168.128.107:53109
Flows TCP192.168.1.1:1050 ➝ 93.115.83.215:49191
Flows TCP192.168.1.1:1051 ➝ 162.242.216.17:19413
Flows TCP192.168.1.1:1052 ➝ 178.32.186.69:48011
Flows TCP192.168.1.1:1053 ➝ 5.45.75.36:13737
Flows TCP192.168.1.1:1054 ➝ 54.241.28.66:21074
Flows TCP192.168.1.1:1055 ➝ 216.234.108.157:60098
Flows TCP192.168.1.1:1056 ➝ 184.72.33.126:42386
Flows TCP192.168.1.1:1057 ➝ 109.73.172.108:16193
Flows TCP192.168.1.1:1058 ➝ 80.252.188.228:30708
Flows TCP192.168.1.1:1059 ➝ 178.79.132.245:60541
Flows TCP192.168.1.1:1060 ➝ 209.222.19.107:25189
Flows TCP192.168.1.1:1061 ➝ 222.82.218.14:45570
Flows TCP192.168.1.1:1062 ➝ 213.174.153.118:27738
Flows TCP192.168.1.1:1063 ➝ 62.116.186.76:12825
Flows TCP192.168.1.1:1064 ➝ 178.79.132.245:60541
Flows TCP192.168.1.1:1065 ➝ 62.116.186.76:12825
Flows TCP192.168.1.1:1066 ➝ 184.82.9.4:10925
Flows TCP192.168.1.1:1067 ➝ 162.13.47.94:29296
Flows TCP192.168.1.1:1068 ➝ 109.104.94.2:11754
Flows TCP192.168.1.1:1069 ➝ 54.241.28.66:21074
Flows TCP192.168.1.1:1070 ➝ 68.169.110.227:44659
Flows TCP192.168.1.1:1071 ➝ 192.225.208.11:32965
Flows TCP192.168.1.1:1072 ➝ 80.91.80.222:32136
Flows TCP192.168.1.1:1073 ➝ 202.125.108.1:40015
Flows TCP192.168.1.1:1074 ➝ 209.124.64.2:12898
Flows TCP192.168.1.1:1075 ➝ 216.35.160.138:43782
Flows TCP192.168.1.1:1076 ➝ 184.72.33.126:42386
Flows TCP192.168.1.1:1077 ➝ 216.234.108.157:60098
Flows TCP192.168.1.1:1078 ➝ 82.211.13.90:22512
Flows TCP192.168.1.1:1079 ➝ 93.89.228.105:41023
Flows TCP192.168.1.1:1080 ➝ 162.13.15.172:54663
Flows TCP192.168.1.1:1081 ➝ 54.241.28.66:21074
Flows TCP192.168.1.1:1082 ➝ 46.229.171.130:13586
Flows TCP192.168.1.1:1083 ➝ 115.112.200.88:21160
Flows TCP192.168.1.1:1084 ➝ 75.101.129.31:33391
Flows TCP192.168.1.1:1085 ➝ 222.82.218.14:45570
Flows TCP192.168.1.1:1086 ➝ 205.186.143.129:21583
Flows TCP192.168.1.1:1087 ➝ 96.126.119.85:30821
Flows TCP192.168.1.1:1088 ➝ 115.112.250.34:33906
Flows TCP192.168.1.1:1089 ➝ 199.71.40.135:47881
Flows TCP192.168.1.1:1090 ➝ 162.243.221.232:46248
Flows TCP192.168.1.1:1091 ➝ 82.98.104.7:30871
Flows TCP192.168.1.1:1092 ➝ 72.52.11.117:20357
Flows TCP192.168.1.1:1093 ➝ 31.170.165.5:47061
Flows TCP192.168.1.1:1094 ➝ 94.242.250.32:32048
Flows TCP192.168.1.1:1095 ➝ 74.113.233.180:29380
Flows TCP192.168.1.1:1096 ➝ 202.158.49.22:12410
Flows TCP192.168.1.1:1097 ➝ 108.162.201.43:17659

Raw Pcap

Strings