Loading content, please wait...
This report is generated from a file or URL submitted to this webservice on January 29th 2016 04:13:16 (UTC)
Guest System: Windows 7 32 bit, Home Premium, 6.1 (build 7601), Service Pack 1
Report generated by
Falcon Sandbox v3.20 © Hybrid Analysis
Attention: this analysis ran with the legacy Usermode Monitor. It is highly recommended to use the Kernelmode Monitor.
Not all malicious and suspicious indicators are displayed. Get your own cloud service or the full version to view all details.
Loading content, please wait...
Tip: Click an analysed process below to view more details.
Analysed 4 processes in total (System Resource Monitor).
| Domain | Address | Registrar | Country |
|---|---|---|---|
| jjcoll.in | 198.12.152.113 | - |
United States |
| IP Address | Port/Protocol | Associated Process | Details |
|---|---|---|---|
|
198.12.152.113 |
80
TCP |
- |
United States
ASN: 26496 (GoDaddy.com, LLC) |
|
85.143.166.200 |
1743
TCP |
- |
Russian Federation
ASN: 56534 (PIRIX, ltd) |
| Endpoint | Request | URL | |
|---|---|---|---|
| 198.12.152.113:80 (jjcoll.in) | GET | /56gf/g545.exe | GET /56gf/g545.exe HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Host: jjcoll.in Connection: Keep-Alive |