Contacted IPs
Network Port Distribution
| Name | IP | Country | ASN | ASN Name | Trigger Process Type |
|---|---|---|---|---|---|
| 8.8.4.4 | United States | 15169 | Level 3 Parent, LLC | Malware Process | |
| eu.minerpool.pw | 185.10.68.220 | Seychelles | 200651 | Not known | Malware Process |
HTTP Packets
| Host | Port | Method | Version | User Agent | Count | Call Time During Execution(Sec) |
|---|
DNS Queries/Answers
| Request | Type |
|---|---|
| eu.minerpool.pw | A |
|
Answers - 185.10.68.123 (A) - 107.182.129.82 (A) - 109.71.252.45 (A) - 185.10.68.220 (A) |
|
TCP Packets
| Call Time During Execution(sec) | Source IP | Dest IP | Dest Port |
|---|---|---|---|
| 9.80543398857 | Sandbox | 185.10.68.220 | 443 |
UDP Packets
| Call Time During Execution(sec) | Source IP | Dest IP | Dest Port |
|---|---|---|---|
| 6.82141089439 | Sandbox | 224.0.0.252 | 5355 |
| 6.82195496559 | Sandbox | 224.0.0.252 | 5355 |
| 6.83688402176 | Sandbox | 239.255.255.250 | 3702 |
| 6.87338805199 | Sandbox | 192.168.56.255 | 137 |
| 9.3892159462 | Sandbox | 224.0.0.252 | 5355 |
| 9.54917407036 | Sandbox | 8.8.4.4 | 53 |
| 12.8729128838 | Sandbox | 192.168.56.255 | 138 |