Contacted IPs
Network Port Distribution
| Name | IP | Country | ASN | ASN Name | Trigger Process Type |
|---|---|---|---|---|---|
| 8.8.4.4 | United States | 15169 | Google LLC | Malware Process | |
| 8.8.8.8 | United States | 15169 | Google LLC | Malware Process | |
| Malware Process | |||||
| www.msftncsi.com | 23.200.3.18 | United States | 20940 | Akamai Technologies, Inc. | Malware Process |
| www.aieov.com | 76.223.54.146 | United States | 16509 | Amazon.com, Inc. | Malware Process |
HTTP Packets
| Host | Port | Method | Version | User Agent | Count | Call Time During Execution(Sec) |
|---|
DNS Queries/Answers
| Request | Type |
|---|---|
| www.msftncsi.com | A |
| 5isohu.com | A |
| www.aieov.com | A |
TCP Packets
| Call Time During Execution(sec) | Source IP | Dest IP | Dest Port |
|---|
UDP Packets
| Call Time During Execution(sec) | Source IP | Dest IP | Dest Port |
|---|---|---|---|
| 3.20490694046 | Sandbox | 224.0.0.252 | 5355 |
| 3.20609712601 | Sandbox | 224.0.0.252 | 5355 |
| 3.2171959877 | Sandbox | 239.255.255.250 | 3702 |
| 3.2261941433 | Sandbox | 224.0.0.252 | 5355 |
| 3.24472093582 | Sandbox | 192.168.56.255 | 137 |
| 4.5049431324 | Sandbox | 224.0.0.252 | 5355 |
| 5.93450593948 | Sandbox | 224.0.0.252 | 5355 |
| 5.96880793571 | Sandbox | 8.8.4.4 | 53 |
| 6.96949410439 | Sandbox | 8.8.8.8 | 53 |
| 7.26642298698 | Sandbox | 8.8.4.4 | 53 |
| 8.27079296112 | Sandbox | 8.8.8.8 | 53 |
| 21.6813211441 | Sandbox | 8.8.8.8 | 53 |
| 22.6867649555 | Sandbox | 8.8.4.4 | 53 |
| 36.2022790909 | Sandbox | 8.8.8.8 | 53 |
| 37.2107579708 | Sandbox | 8.8.4.4 | 53 |
| 51.511070013 | Sandbox | 8.8.8.8 | 53 |
| 52.5206129551 | Sandbox | 8.8.4.4 | 53 |
| 66.0939369202 | Sandbox | 8.8.8.8 | 53 |
| 67.1084270477 | Sandbox | 8.8.4.4 | 53 |
| 80.5577669144 | Sandbox | 8.8.8.8 | 53 |