Contacted IPs
Network Port Distribution
| Name | IP | Country | ASN | ASN Name | Trigger Process Type |
|---|---|---|---|---|---|
| 8.8.4.4 | United States | 15169 | Level 3 Communications, Inc. | Malware Process | |
| 8.8.8.8 | United States | 15169 | Level 3 Communications, Inc. | Malware Process | |
| dyrjwivnsayi.indeedbranch.ru | 52.209.50.254 | United States | 16509 | Amazon Data Services Ireland Limited | Malware Process |
HTTP Packets
| Host | Port | Method | Version | User Agent | Count | Call Time During Execution(Sec) |
|---|
DNS Queries/Answers
| Request | Type |
|---|---|
| dyrjwivnsayi.indeedbranch.ru | A |
TCP Packets
| Call Time During Execution(sec) | Source IP | Dest IP | Dest Port |
|---|
UDP Packets
| Call Time During Execution(sec) | Source IP | Dest IP | Dest Port |
|---|---|---|---|
| 3.09762692451 | Sandbox | 224.0.0.252 | 5355 |
| 3.11642503738 | Sandbox | 224.0.0.252 | 5355 |
| 3.1227478981 | Sandbox | 239.255.255.250 | 3702 |
| 3.16163492203 | Sandbox | 192.168.56.255 | 137 |
| 5.7707118988 | Sandbox | 224.0.0.252 | 5355 |
| 9.16138887405 | Sandbox | 192.168.56.255 | 138 |
| 31.0779459476 | Sandbox | 8.8.4.4 | 53 |
| 32.066847086 | Sandbox | 8.8.8.8 | 53 |
| 43.0833399296 | Sandbox | 8.8.8.8 | 53 |
| 44.0828149319 | Sandbox | 8.8.4.4 | 53 |
| 55.116642952 | Sandbox | 8.8.8.8 | 53 |
| 56.1145269871 | Sandbox | 8.8.4.4 | 53 |
| 73.3020460606 | Sandbox | 8.8.8.8 | 53 |
| 74.3015139103 | Sandbox | 8.8.4.4 | 53 |
| 85.302521944 | Sandbox | 8.8.8.8 | 53 |
| 86.3013319969 | Sandbox | 8.8.4.4 | 53 |
| 97.3036179543 | Sandbox | 8.8.8.8 | 53 |
| 98.3012869358 | Sandbox | 8.8.4.4 | 53 |