Loading Joe Sandbox Report ...

Edit tour

Linux Analysis Report
63CYVWIouB

Overview

General Information

Sample Name:63CYVWIouB
Analysis ID:626581
MD5:c43b1f7f5d82b0e0af11805d19221314
SHA1:1da4e06856562c57e45e2b2785060026a238ef6b
SHA256:f403c4a3db6554515ee5ee692b93baa31a4083ac1832a0ed64f62043c9467b60
Tags:32elfintelmirai
Infos:

Detection

Mirai
Score:68
Range:0 - 100
Whitelisted:false

Signatures

Yara detected Mirai
Multi AV Scanner detection for submitted file
Sample deletes itself
Uses known network protocols on non-standard ports
Machine Learning detection for sample
Sample has stripped symbol table
Tries to connect to HTTP servers, but all servers are down (expired dropper behavior)
Detected TCP or UDP traffic on non-standard ports
Sample contains strings indicative of BusyBox which embeds multiple Unix commands in a single executable

Classification

Analysis Advice

All HTTP servers contacted by the sample do not answer. The sample is likely an old dropper which does no longer work.
Joe Sandbox Version:34.0.0 Boulder Opal
Analysis ID:626581
Start date and time: 14/05/202214:45:102022-05-14 14:45:10 +02:00
Joe Sandbox Product:CloudBasic
Overall analysis duration:0h 5m 7s
Hypervisor based Inspection enabled:false
Report type:full
Sample file name:63CYVWIouB
Cookbook file name:defaultlinuxfilecookbook.jbs
Analysis system description:Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11)
Analysis Mode:default
Detection:MAL
Classification:mal68.troj.evad.lin@0/0@0/0
  • Report size exceeded maximum capacity and may have missing network information.
Command:/tmp/63CYVWIouB
PID:6234
Exit Code:0
Exit Code Info:
Killed:False
Standard Output:
cronus
Standard Error:
  • system is lnxubuntu20
  • 63CYVWIouB (PID: 6234, Parent: 6125, MD5: c43b1f7f5d82b0e0af11805d19221314) Arguments: /tmp/63CYVWIouB
  • cleanup
SourceRuleDescriptionAuthorStrings
dump.pcapJoeSecurity_Mirai_12Yara detected MiraiJoe Security
    No Snort rule has matched

    Click to jump to signature section

    Show All Signature Results

    AV Detection

    barindex
    Source: 63CYVWIouBVirustotal: Detection: 44%Perma Link
    Source: 63CYVWIouBMetadefender: Detection: 31%Perma Link
    Source: 63CYVWIouBReversingLabs: Detection: 60%
    Source: 63CYVWIouBJoe Sandbox ML: detected

    Networking

    barindex
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47720
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47746
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47760
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47784
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47812
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47842
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47870
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47898
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47924
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47950
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47992
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48018
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48118
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48136
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48150
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48170
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48196
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48220
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48238
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48258
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48274
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48300
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48326
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48348
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48374
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48398
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48432
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48466
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48490
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48518
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48548
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48572
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48602
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48638
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48666
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48686
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48710
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48742
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48760
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48774
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48796
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48808
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48824
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48844
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48864
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48886
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48916
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48936
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48954
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48974
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48992
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 49012
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 49026
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 49046
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57380
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57396
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57412
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57430
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57448
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57468
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57488
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57500
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57526
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57538
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57556
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57566
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57578
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57600
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57614
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57624
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57642
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57658
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57670
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57688
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57700
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57726
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57748
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57766
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57794
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57898
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57932
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57968
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57998
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58028
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58064
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58100
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58270
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58320
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58362
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58410
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58462
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58506
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58544
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58580
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58610
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58658
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58698
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58734
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58764
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58808
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58866
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58922
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58970
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59020
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59050
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59080
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59098
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59116
    Source: global trafficTCP traffic: 192.168.2.23:42836 -> 91.189.91.43:443
    Source: global trafficTCP traffic: 192.168.2.23:42516 -> 109.202.202.202:80
    Source: global trafficTCP traffic: 192.168.2.23:43928 -> 91.189.91.42:443
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 202.13.58.53:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 20.241.57.58:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 34.130.108.73:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 102.190.207.4:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 116.248.169.90:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 59.24.40.153:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 35.92.12.67:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 25.67.26.116:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 175.119.150.165:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 60.9.42.195:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 8.82.12.192:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 117.190.186.56:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 178.101.172.161:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 46.129.169.123:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 147.125.183.30:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 9.183.102.201:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 171.170.69.247:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 171.67.205.9:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 59.66.52.85:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 93.143.107.80:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 74.245.175.2:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 188.138.245.214:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 178.219.30.151:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 185.250.119.20:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 99.171.12.61:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 132.106.64.34:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 106.208.86.111:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 112.188.54.97:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 114.45.89.236:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 5.64.152.87:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 210.39.189.151:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 24.129.116.218:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 160.193.60.34:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 145.105.231.135:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 12.103.130.143:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 222.96.251.207:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 150.56.114.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:44776 -> 109.237.96.25:5034
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 112.141.155.23:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 84.145.120.51:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 32.18.49.63:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 62.226.171.238:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 183.148.24.6:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 75.228.133.15:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 19.154.113.242:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 157.167.149.252:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 120.152.109.181:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 70.246.202.45:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 142.157.155.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 109.213.40.26:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 78.162.254.135:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 156.234.127.230:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 32.184.13.175:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 144.12.213.230:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 193.34.252.165:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 212.2.69.147:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 78.68.204.52:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 135.100.87.194:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 95.41.14.159:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 164.101.214.124:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 132.184.251.15:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 20.212.22.183:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 209.194.195.186:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 106.105.186.173:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 193.228.4.89:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.94.80.14:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 205.255.71.119:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 89.76.183.67:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 13.36.209.210:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 71.231.245.47:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 197.109.127.159:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 159.12.5.172:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 86.255.246.47:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 136.229.248.57:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 133.80.225.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 35.48.111.230:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 111.32.166.217:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 134.9.229.105:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 196.220.17.172:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 210.67.197.180:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 5.35.109.17:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 25.172.89.42:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 32.15.250.56:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 73.145.5.207:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 145.105.214.140:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 119.248.33.239:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 219.207.132.70:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 40.235.211.102:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 222.186.171.201:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 12.235.158.53:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 184.15.252.247:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 188.14.97.152:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 187.94.193.7:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 79.25.83.64:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 13.72.12.62:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 198.78.195.187:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 83.122.251.124:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 37.188.43.40:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 218.215.208.95:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 150.98.141.145:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 32.15.11.71:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 201.140.133.162:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 181.147.122.185:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 94.61.16.25:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 82.110.80.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 134.133.125.122:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 168.75.69.250:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 103.119.230.228:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 61.219.193.47:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 91.105.147.201:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 4.133.121.216:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 76.241.166.176:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 181.42.14.2:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 98.11.249.243:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 189.129.107.68:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 124.175.20.70:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 107.244.214.108:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 131.85.240.102:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 19.14.158.234:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 19.78.38.211:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 73.0.58.208:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 185.119.213.105:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 119.231.163.102:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 146.37.61.200:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 221.152.203.68:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 109.111.104.142:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 116.144.94.141:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 205.41.164.65:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 217.40.207.0:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 161.49.213.171:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 217.202.237.86:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 79.38.168.230:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 139.17.229.252:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 159.34.48.175:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 142.226.216.36:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 147.57.151.8:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 23.153.27.204:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 103.68.126.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 62.238.62.164:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 36.170.58.75:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 154.214.79.25:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 32.216.94.77:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 74.74.172.73:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 82.228.83.180:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 221.101.0.21:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 27.128.81.138:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 125.69.19.87:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 113.218.11.167:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 69.153.64.205:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 176.218.201.143:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 221.232.156.111:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 199.204.219.61:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 92.202.170.78:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 179.139.250.77:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 210.181.171.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 206.20.57.128:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 184.169.237.157:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 110.196.104.38:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 162.155.189.67:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 218.236.221.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 8.142.224.39:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 163.156.57.91:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 39.67.142.209:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 162.103.162.177:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 18.85.147.241:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 110.49.240.59:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 147.78.8.213:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 120.146.193.70:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 93.186.95.106:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 1.188.137.251:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 14.41.185.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 139.194.233.148:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 80.113.192.159:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 139.121.210.129:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 157.3.129.162:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 154.108.116.134:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 129.134.109.163:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 162.166.184.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 36.173.17.41:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 34.97.89.167:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 168.197.71.126:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 35.77.32.114:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 140.51.164.153:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 20.128.25.139:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 130.86.223.107:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 181.44.31.142:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 131.202.191.60:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 203.108.141.231:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 122.143.141.231:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 138.171.100.210:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 170.253.208.60:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 108.151.6.11:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 218.234.53.40:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 153.74.96.185:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 76.86.182.43:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 72.0.236.235:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 143.16.74.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 131.251.227.37:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 161.108.132.233:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 18.107.187.58:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 103.135.83.198:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 196.166.138.176:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 210.131.230.27:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 36.123.247.76:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 92.240.203.211:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 100.45.191.248:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 135.60.249.41:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 187.90.51.246:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 170.144.61.51:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 181.192.166.25:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 199.111.49.223:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 51.134.238.250:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 198.54.117.59:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 176.140.84.178:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 132.174.77.87:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 194.166.158.201:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 180.207.31.85:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 124.181.28.215:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 185.205.178.50:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 35.188.201.154:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 221.247.30.111:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 143.56.204.170:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 129.90.63.55:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 107.54.47.120:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 174.137.254.209:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 75.130.171.100:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 43.175.199.83:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 12.142.229.20:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 219.102.173.16:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 81.198.120.125:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 151.158.117.245:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 20.34.254.61:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 105.97.241.122:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 17.156.238.227:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 8.71.143.246:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 114.132.228.111:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 52.97.134.126:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 71.194.63.129:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 217.88.7.39:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 42.134.116.102:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 67.227.61.218:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 198.229.212.143:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 205.11.52.25:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 71.146.56.181:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 87.41.128.46:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 180.149.126.156:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 223.138.70.93:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 118.172.232.35:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 109.205.39.195:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 64.29.58.16:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 152.11.150.28:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 200.27.137.20:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 52.254.112.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 99.233.53.79:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 164.193.177.17:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.251.46.243:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 161.104.227.40:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 125.46.159.93:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 165.127.74.174:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 167.247.65.87:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 222.214.62.221:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 124.44.112.234:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 119.35.141.64:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 95.122.251.161:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.111.53.82:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 31.248.36.131:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 150.17.12.235:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 195.241.73.72:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 219.155.40.14:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 159.252.248.95:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 191.44.244.152:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 50.179.211.242:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 42.121.162.157:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 1.248.223.232:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 62.63.178.132:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 107.196.124.23:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 169.205.154.66:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 140.56.146.252:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.140.127.191:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 168.135.180.244:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 92.31.205.251:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 155.62.98.189:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 121.152.53.185:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 199.74.165.226:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 191.136.184.157:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 153.127.129.235:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 213.77.253.15:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 89.26.135.101:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 144.117.227.230:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 139.251.219.59:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 126.15.239.146:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 183.231.129.77:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 48.138.43.206:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 157.251.238.72:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 177.147.154.242:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 129.74.164.58:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 153.207.117.214:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 58.123.217.171:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 89.73.82.58:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 188.140.115.174:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 185.134.76.141:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 74.159.87.63:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 61.221.132.186:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 117.41.40.167:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 58.141.120.152:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 199.121.96.11:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 201.150.244.90:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 138.201.37.6:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 168.173.237.16:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 66.93.117.140:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 205.11.201.247:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 128.156.226.206:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 73.134.91.226:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 14.213.3.126:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 113.116.17.197:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 112.84.147.218:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 164.17.247.91:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 198.133.228.94:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 35.239.162.246:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 123.153.118.29:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 64.141.42.155:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 100.2.90.18:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 111.193.106.95:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 107.15.46.204:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 173.54.27.210:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 140.63.118.216:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 179.237.120.119:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 137.132.77.203:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 185.110.161.211:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 128.121.190.69:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 212.166.183.145:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 36.69.76.190:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 83.15.164.236:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 143.230.39.160:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 89.123.60.158:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 218.174.254.248:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 160.139.116.91:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 87.30.50.101:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 108.19.44.171:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 4.57.252.183:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 208.120.71.35:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 104.75.16.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 149.237.101.249:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 138.77.143.194:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 107.109.92.84:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 18.19.159.227:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 134.94.88.168:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 38.234.92.169:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 66.128.227.15:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 67.231.208.115:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 151.34.100.114:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 31.23.141.1:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 196.212.31.185:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 73.130.91.212:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 2.184.115.211:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 206.76.153.94:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 120.253.192.150:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 63.214.48.81:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.48.34.206:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 152.239.128.104:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 91.165.196.202:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 105.188.199.238:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 4.233.182.73:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 189.180.9.108:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 175.156.64.63:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 88.144.94.69:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 112.208.48.41:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 148.147.50.181:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 202.49.130.63:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 219.171.215.218:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 5.176.216.150:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 60.208.54.106:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 154.12.113.0:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 67.255.83.198:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 210.67.113.178:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 24.17.188.225:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 185.227.2.106:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 190.76.39.252:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 23.133.132.120:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 180.93.226.201:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 126.53.66.197:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 39.15.168.139:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 204.175.88.14:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 49.78.216.97:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 2.72.212.186:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 170.84.110.110:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 184.197.166.164:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 34.94.245.16:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 23.46.247.139:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 86.219.217.61:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 131.166.116.50:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 170.239.117.32:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 102.246.249.5:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 103.245.251.121:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 148.249.22.6:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 40.0.30.194:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 43.68.144.124:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 106.7.197.56:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 117.82.164.138:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 219.173.220.224:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 195.181.235.91:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 65.151.132.128:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 196.252.236.77:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 175.56.100.103:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 145.165.90.159:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 175.209.243.228:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 108.178.72.186:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 171.108.243.143:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 222.220.150.11:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 213.98.34.244:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 66.222.3.228:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 19.126.167.47:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 212.46.160.187:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 159.44.242.171:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 103.97.150.59:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 38.86.163.152:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 65.248.164.171:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 116.14.114.53:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 161.87.234.126:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 77.190.184.78:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 85.95.227.92:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 69.209.161.78:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 63.241.185.163:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 194.17.149.71:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 104.22.10.162:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 173.239.12.104:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 45.96.71.255:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 70.134.151.37:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 18.220.233.106:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 93.80.116.154:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 46.185.61.219:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 187.33.115.169:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 223.24.148.27:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 138.200.218.146:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 221.45.153.185:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 143.238.157.213:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 69.71.16.33:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 205.154.21.216:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 122.82.252.69:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.150.97.202:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 191.245.63.99:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 207.14.174.41:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 47.26.79.98:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 91.189.193.5:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 102.136.22.53:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 110.161.137.10:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 1.45.105.8:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 154.134.200.218:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 77.139.29.68:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 108.54.174.9:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 35.144.222.32:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 47.44.139.40:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 80.2.97.166:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 20.43.164.67:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 103.158.251.216:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 154.106.48.58:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 139.249.35.169:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 133.72.157.59:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 100.148.36.129:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 148.218.254.0:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 96.115.175.108:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 90.185.79.96:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 51.53.121.78:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 124.44.72.22:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 39.184.94.169:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 38.231.230.109:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 166.96.108.210:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 186.0.122.158:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 216.236.180.31:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 1.43.241.229:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 187.160.145.93:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 109.218.71.142:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 83.253.37.88:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 222.235.33.234:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 66.194.27.87:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 150.129.59.43:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 61.197.237.120:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 162.244.137.133:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 190.217.117.77:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 132.67.210.14:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 142.177.124.17:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 36.250.251.43:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 62.19.139.224:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 186.53.31.5:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 23.83.140.110:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 40.97.220.207:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 223.111.87.59:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 180.25.180.243:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 180.168.129.71:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 150.99.143.146:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 194.117.237.38:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 199.25.246.17:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 190.67.213.135:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 89.177.19.150:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 211.163.11.26:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 89.196.81.125:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 132.132.240.220:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 23.95.45.239:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 220.22.245.156:2323
    Source: global trafficTCP traffic: 192.168.2.23:28594 -> 52.179.165.222:2323
    Source: unknownNetwork traffic detected: HTTP traffic on port 43928 -> 443
    Source: unknownNetwork traffic detected: HTTP traffic on port 42836 -> 443
    Source: unknownTCP traffic detected without corresponding DNS query: 202.13.58.53
    Source: unknownTCP traffic detected without corresponding DNS query: 200.187.87.121
    Source: unknownTCP traffic detected without corresponding DNS query: 35.186.186.134
    Source: unknownTCP traffic detected without corresponding DNS query: 101.43.167.140
    Source: unknownTCP traffic detected without corresponding DNS query: 164.120.39.89
    Source: unknownTCP traffic detected without corresponding DNS query: 197.78.43.52
    Source: unknownTCP traffic detected without corresponding DNS query: 44.131.77.110
    Source: unknownTCP traffic detected without corresponding DNS query: 222.253.233.235
    Source: unknownTCP traffic detected without corresponding DNS query: 51.112.39.48
    Source: unknownTCP traffic detected without corresponding DNS query: 189.119.166.53
    Source: unknownTCP traffic detected without corresponding DNS query: 182.162.92.13
    Source: unknownTCP traffic detected without corresponding DNS query: 50.212.97.130
    Source: unknownTCP traffic detected without corresponding DNS query: 20.241.57.58
    Source: unknownTCP traffic detected without corresponding DNS query: 117.69.236.59
    Source: unknownTCP traffic detected without corresponding DNS query: 125.18.217.238
    Source: unknownTCP traffic detected without corresponding DNS query: 34.130.108.73
    Source: unknownTCP traffic detected without corresponding DNS query: 129.195.181.218
    Source: unknownTCP traffic detected without corresponding DNS query: 115.177.15.79
    Source: unknownTCP traffic detected without corresponding DNS query: 20.24.17.68
    Source: unknownTCP traffic detected without corresponding DNS query: 90.184.116.122
    Source: unknownTCP traffic detected without corresponding DNS query: 90.222.11.232
    Source: unknownTCP traffic detected without corresponding DNS query: 106.79.86.164
    Source: unknownTCP traffic detected without corresponding DNS query: 145.148.200.104
    Source: unknownTCP traffic detected without corresponding DNS query: 115.184.173.126
    Source: unknownTCP traffic detected without corresponding DNS query: 162.248.27.110
    Source: unknownTCP traffic detected without corresponding DNS query: 4.201.77.176
    Source: unknownTCP traffic detected without corresponding DNS query: 102.190.207.4
    Source: unknownTCP traffic detected without corresponding DNS query: 171.20.107.41
    Source: unknownTCP traffic detected without corresponding DNS query: 217.152.221.251
    Source: unknownTCP traffic detected without corresponding DNS query: 79.1.99.134
    Source: unknownTCP traffic detected without corresponding DNS query: 42.100.70.187
    Source: unknownTCP traffic detected without corresponding DNS query: 185.203.242.23
    Source: unknownTCP traffic detected without corresponding DNS query: 4.187.187.4
    Source: unknownTCP traffic detected without corresponding DNS query: 17.135.3.178
    Source: unknownTCP traffic detected without corresponding DNS query: 70.131.156.230
    Source: unknownTCP traffic detected without corresponding DNS query: 101.145.16.160
    Source: unknownTCP traffic detected without corresponding DNS query: 176.2.21.133
    Source: unknownTCP traffic detected without corresponding DNS query: 213.188.223.212
    Source: unknownTCP traffic detected without corresponding DNS query: 83.53.53.132
    Source: unknownTCP traffic detected without corresponding DNS query: 25.181.206.184
    Source: unknownTCP traffic detected without corresponding DNS query: 193.26.227.163
    Source: unknownTCP traffic detected without corresponding DNS query: 116.248.169.90
    Source: unknownTCP traffic detected without corresponding DNS query: 156.158.4.162
    Source: unknownTCP traffic detected without corresponding DNS query: 105.235.165.56
    Source: unknownTCP traffic detected without corresponding DNS query: 27.203.125.62
    Source: unknownTCP traffic detected without corresponding DNS query: 27.30.50.93
    Source: unknownTCP traffic detected without corresponding DNS query: 172.62.84.214
    Source: unknownTCP traffic detected without corresponding DNS query: 59.24.40.153
    Source: unknownTCP traffic detected without corresponding DNS query: 58.170.40.101
    Source: unknownTCP traffic detected without corresponding DNS query: 18.75.161.179
    Source: ELF static info symbol of initial sample.symtab present: no
    Source: Initial sampleString containing 'busybox' found: /bin/busybox
    Source: Initial sampleString containing 'busybox' found: var/Challengeapp/hi3511gmDVRiboxusr/dvr_main _8182T_1108mnt/mtd/app/guivar/Kylinl0 c/udevdvar/tmp/soniahicorestm_hi3511_dvr/bin/busybox/usr/lib/systemd/systemdusr/shellmnt/sys/boot/media/srv/var/run/sbin/lib/etc/dev/home/Davincitelnetsshwatchdog/var/spool/var/Sofiasshdbashhttpdtelnetddropbearencodersystem/root/dvr_gui//root/dvr_app//anko-app//opt/anko-app/ankosample _8182T_1104/usr/libexec/openssh/sftp-server,
    Source: classification engineClassification label: mal68.troj.evad.lin@0/0@0/0

    Hooking and other Techniques for Hiding and Protection

    barindex
    Source: /tmp/63CYVWIouB (PID: 6234)File: /tmp/63CYVWIouBJump to behavior
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47720
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47746
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47760
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47784
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47812
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47842
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47870
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47898
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47924
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47950
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 47992
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48018
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48118
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48136
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48150
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48170
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48196
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48220
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48238
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48258
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48274
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48300
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48326
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48348
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48374
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48398
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48432
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48466
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48490
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48518
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48548
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48572
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48602
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48638
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48666
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48686
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48710
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48742
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48760
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48774
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48796
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48808
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48824
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48844
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48864
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48886
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48916
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48936
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48954
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48974
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 48992
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 49012
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 49026
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 49046
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57380
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57396
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57412
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57430
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57448
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57468
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57488
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57500
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57526
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57538
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57556
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57566
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57578
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57600
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57614
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57624
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57642
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57658
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57670
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57688
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57700
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57726
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57748
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57766
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57794
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57898
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57932
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57968
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 57998
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58028
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58064
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58100
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58270
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58320
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58362
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58410
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58462
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58506
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58544
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58580
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58610
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58658
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58698
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58734
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58764
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58808
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58866
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58922
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 58970
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59020
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59050
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59080
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59098
    Source: unknownNetwork traffic detected: HTTP traffic on port 23 -> 59116

    Stealing of Sensitive Information

    barindex
    Source: Yara matchFile source: dump.pcap, type: PCAP

    Remote Access Functionality

    bar