Tag Archives: Awesome Malware Sality Trojan Turns into IRC Botnet User Level Compromise

Awesome Malware Sality Trojan Turns into IRC Botnet User Level Compromise

2008-12-29 13:28:02.687128 IP 168.131.48.151.1068 > 168.131.48.89.53: 2130+ A? proxim.ircgalaxy[.]pl. (37) E..A……….0…0Y.,.5.-fi.R………..proxim ircgalaxy[.]pl….. 2008-12-29 13:28:02.812293 IP 168.131.48.151.1069 > 168.131.48.89.53: 32661+ A? mx1.hotmail[.]com. (33) E..=……….0…0Y.-.5.)……………mx1.hotmail[.]com….. 2008-12-29 13:28:02.894061 IP 168.131.48.89.53 > 168.131.48.151.1069: 32661 3/5/5 A 65.54.244.8, A 65.54.244.136, A 65.54.245.8 (259) E…..@.@…..0Y..0..5.-…2………….mx1.hotmail[.]com……………..A6…………..A6…………..A6……………ns2.msft.net…………..ns3.a………….ns1.a………….ns4.a………….ns5.a………….D…]……….A6.~.w………….M…………..B~…………A7.~ 2008-12-29 13:28:02.896037 IP 168.131.48.151.1070 > 65.54.244.8.25: Flags [S], seq 3211372640, win 64240, options [mss 1460,nop,nop,sackOK], length… Read More »

Share Button