Category Archives: KaiXin Exploit Kit

KaiXin Failed Exploit Kit Attack PCAP Traffic Sample

2015-01-02 20:50:37.883125 IP 192.168.138.158.1042 > 119.147.137.128.80: Flags [P.], seq 1:459, ack 1, win 64240, length 458 E…..@………w……P…>8…P…U…POST /tj.asp HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */* Referer: http://www.568bar[.]com/tj.asp Accept-Language: zh-cn Content-Length: 16 Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Host: www.568bar[.]com Cache-Control: no-cache yz=1314&uz=1&jc= 2015-01-02 20:50:38.059030 IP 119.147.137.128.80 >… Read More »

Share Button