Tag Archives: HISTORICAL Malware Sample – ZA/ZeroAccess/Sirefef – Traffic Sample Indicators Analysis

HISTORICAL Malware Sample – ZA/ZeroAccess/Sirefef – Traffic Sample Indicators Analysis

2012-10-04 00:34:27.740841 IP 192.168.106.131.1164 > 91.242.217.247.53: 25352 op6 [b2&3=0x3625] [40600a] [36508q] [18538n] [27703au][|domain] E..0M………j.[……5…     c.6%….Hjl7(pzb\Y.. 2012-10-04 00:34:27.741102 IP 192.168.106.131.1164 > 66.85.130.234.53: 25352 op6 [b2&3=0x3625] [40600a] [36508q] [18538n] [27703au][|domain] E..0M……`..j.BU…..5….c.6%….Hjl7(pzb\Y.. 2012-10-04 00:34:27.743925 IP 192.168.106.131.1166 > 91.242.217.247.53: 25352 op6 [b2&3=0x3625] [40600a] [63388q] [18538n] [27703au][|domain] E..0M………j.[……5…yc.6%….Hjl7(pzb…. 2012-10-04 00:34:27.744167 IP 192.168.106.131.1166 > 66.85.130.234.53: 25352 op6 [b2&3=0x3625] [40600a] [63388q] [18538n]… Read More »

Share Button