Untitled

buffer@rigel ~/thug/src $ python thug.py http://10.3.6.54:8080/1
[2014-06-26 15:23:32] [window open redirection] about:blank -> http://10.3.6.54:8080/1
[2014-06-26 15:23:32] [HTTP Redirection (Status: 302)] Content-Location: http://10.3.6.54:8080/1 --> Location: http://10.3.6.54:8080/1/
[2014-06-26 15:23:32] [HTTP] URL: http://10.3.6.54:8080/1/ (Status: 200, Referrer: None)
[2014-06-26 15:23:32] [HTTP] URL: http://10.3.6.54:8080/1/ (Content-type: text/html, MD5: fc2088853efdf38f819b83de3a5c0a39)
[2014-06-26 15:23:32] <applet archive="jhBnvoNW.jar" code="oaJG.class" height="1" width="1"></applet>
[2014-06-26 15:23:32] [Navigator URL Translation] jhBnvoNW.jar --> http://10.3.6.54:8080/1/jhBnvoNW.jar
[2014-06-26 15:23:32] [applet redirection] http://10.3.6.54:8080/1/ -> http://10.3.6.54:8080/1/jhBnvoNW.jar
[2014-06-26 15:23:33] [HTTP] URL: http://10.3.6.54:8080/1/jhBnvoNW.jar (Status: 200, Referrer: http://10.3.6.54:8080/1/)
[2014-06-26 15:23:33] [HTTP] URL: http://10.3.6.54:8080/1/jhBnvoNW.jar (Content-type: application/octet-stream, MD5: 616eca13cc6fc173349f3836a1bf53c8)
[2014-06-26 15:23:37] [HoneyAgent] Sample 616eca13cc6fc173349f3836a1bf53c8 submitted
[2014-06-26 15:23:37] Saving log analysis at ../logs/c2b78e6e949138622263f77d4ec946fd/20140626152332

buffer@rigel ~/thug/src $ cd ../logs/c2b78e6e949138622263f77d4ec946fd/20140626152332/analysis/honeyagent/dropped/
buffer@rigel ~/thug/logs/c2b78e6e949138622263f77d4ec946fd/20140626152332/analysis/honeyagent/dropped $ ls -lh
total 92K
-rw-r--r-- 1 buffer buffer  73K Jun 26 15:23 PRGEepzK.exe
-rw-r--r-- 1 buffer buffer 9.2K Jun 26 15:23 aJaKgsS.class
-rw-r--r-- 1 buffer buffer  110 Jun 26 15:23 cJHyxJKchG.dat
buffer@rigel ~/thug/logs/c2b78e6e949138622263f77d4ec946fd/20140626152332/analysis/honeyagent/dropped $ file *
PRGEepzK.exe:   PE32 executable (GUI) Intel 80386, for MS Windows
aJaKgsS.class:  compiled Java class data, version 45.3
cJHyxJKchG.dat: ASCII text