Category Archives: Styx Exploit Kit

EK Styx Exploit Kit Loads Simda Proxyer Proxy Malware GET /?G1i917= report.* Domain Name

2014-03-15 00:05:11.815264 IP 192.168.1.104.54571 > 209.18.47.61.53: 4151+ A? transit.thundernova[.]ca. (40) E..D……hQ…h../=.+.5.0t..7………..transit.thundernova[.]ca….. 2014-03-15 00:05:11.867429 IP 209.18.47.61.53 > 192.168.1.104.54571: 4151 1/0/0 A 204.27.57.194 (56) E..T..@.7..9../=…h.5.+.@ ?.7………..transit.thundernova[.]ca……………….9. 2014-03-15 00:05:11.868340 IP 192.168.1.104.49507 > 204.27.57.194.80: Flags [S], seq 4100960480, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0 E..4..@…”….h..9..c.P.o…….. . $………….. 2014-03-15 00:05:11.927367 IP 204.27.57.194.80 > 192.168.1.104.49507: Flags [S.], seq 3208407014,… Read More »

Share Button