NAME
====
  Slammer
        + PERL_SQLP1434.A (TrendMicro)


EXPERIMENTAL TYPE
=================
  Retrieval Behavior - includes retrieval packets only.


EXPERIMENTAL ENVIRONMENT
========================

                 131.113.1.2 (Triger Packet Sender)
                     |
   131.113.1.1       |          131.113.1.2
  +-----------+      |         +-----+-----+
  | Infected  |      |         | Targeted  |
  |    PC     | <----+         |    PC     |
  |  (*1)(*2) |                |           |
  +-----+-----+                +-----+-----+
        |                            |
  ------+----------------------------+------
  131.113.1.0/31

  (*1) Windows 2000 Server + SQL 2000 Server on VMware
  (*2) Default Route = 131.113.1.2


PCAP SUMMARY
============

Total: 50997  START: 1 0.000000
-----------------
1434/UDP;: 50997
  1 0.000000 131.113.1.1 221.226.59.70 UDP Source port: 1031 Destination port: 1434