Tag Archives: HISTORICAL Malware Sample – CryptoLocker Ransomware – Traffic Sample Indicators Analysis

HISTORICAL Malware Sample – CryptoLocker Ransomware – Traffic Sample Indicators Analysis

2012-10-04 09:29:31.118093 IP 192.168.248.165.53 > 4.2.2.2.53: 16567+ A? jbtuehcyosios.info. (36) E..@.L….y……….5.5.,r\@………..^Mjbtuehcyosios.info….. 2012-10-04 09:29:31.159025 IP 8.8.8.8.53 > 192.168.248.165.53: 16567 NXDomain 0/1/0 (96) E..|.x……………5.5.h..@………..^Mjbtuehcyosios.info………….. .0.a0.info.afilias-nst…noc.8w.v……….  :….. 2012-10-04 09:29:31.159472 IP 192.168.248.165.53 > 8.8.8.8.53: 60444+ A? jbtuehcyosios.info.localdomain. (48) E..L.O….n……….5.5.8A………….^Mjbtuehcyosios.info.localdomain….. 2012-10-04 09:29:31.159555 IP 192.168.248.165.53 > 4.2.2.2.53: 60444+ A? jbtuehcyosios.info.localdomain. (48) E..L.P….x……….5.5.8K………….^Mjbtuehcyosios.info.localdomain….. 2012-10-04 09:29:31.168602 IP 4.2.2.2.53 > 192.168.248.165.53: 60444 NXDomain 0/1/0… Read More »

Share Button