Tag Archives: Vintage Gh0st APT FTP Malware Traffic Sample Download PCAP

Vintage Gh0st APT FTP Malware Traffic Sample Download PCAP

Download the raw PCAP for Gh0st APT here : Gh0st.pcap   2012-08-05 22:50:40.647899 IP 192.168.106.141.1068 > 121.63.150.15.21: Flags [R.], seq 266, ack 1, win 0, length 0 E..(.W@…….j.y?…,…..F.J.8P……. 2012-08-05 22:50:40.648984 IP 192.168.106.141.1032 > 192.168.106.2.53: 10854+ A? netuser.dns1.us. (33) E..=.X…..w..j…j….5.)..*f………..netuser.dns1.us….. 2012-08-05 22:50:40.698458 IP 192.168.106.2.53 > 192.168.106.141.1032: 10854 1/0/0 A 27.22.117.26 (49) E..M……K)..j…j..5…9N.*f………..netuser.dns1.us……………….u. 2012-08-05 22:50:40.698958 IP 192.168.106.141.1069 >… Read More »

Share Button