Category Archives: Angler Exploit Kit installs VAWTRAK Malware

Angler Exploit Kit Traffic Sample That Loads VAWTRAK Malware

2015-06-08 09:33:09.535718 IP 192.168.122.239.49378 > 194.15.126.7.80: Flags [P.], seq 1:426, ack 1, win 16404, length 425 E…..@…a…z…~….P……4.P.@..t..GET /banner.php?sid=425AB2B199B62D037FB459B962D07E2D17AE45F4F4EF707357 HTTP/1.1 Accept: */* Accept-Language: en-US Referer: [[[[ redacted ]]]] x-flash-version: 11,2,202,228 Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC… Read More »

Share Button