2024-12-17 - SmartApeSG injected script leads to NetSupport RAT 2024-12-17 (TUESDAY): SMARTAPESG INJECTED SCRIPT LEADS TO NETSUPPORT RATNOTES:Zip files are p... 2024-12-17 04:47:0 | 阅读: 8 | 收藏 | Malware-Traffic-Analysis.net - Blog Entries - www.malware-traffic-analysis.net hxxps depostsolo biz netsupport smartapesg

2024-12-04 - AgentTesla variant using FTP 2024-12-04 (WEDNESDAY): AGENTTESLA VARIANT USING FTPNOTES:Zip files are password-protected.... 2024-12-5 08:45:0 | 阅读: 11 | 收藏 | Malware-Traffic-Analysis.net - Blog Entries - www.malware-traffic-analysis.net agenttesla wednesday windows bsky

2024-11-26 - Traffic Analysis Exercise: Nemotodes 2024-11-26 - TRAFFIC ANALYSIS EXERCISE: NEMOTODESASSOCIATED FILES:Zip archive of the pcap:  2... 2024-11-28 14:15:0 | 阅读: 9 | 收藏 | Malware-Traffic-Analysis.net - Blog Entries - www.malware-traffic-analysis.net nemotodes analysis answers 297 facility

2024-11-24 - Redline bash script for Linux malware 2024-11-24 (SUNDAY): "REDTAIL" BASH SCRIPT FOR LINUX MALWARENOTES:Zip files are password-prot... 2024-11-25 12:35:0 | 阅读: 4 | 收藏 | Malware-Traffic-Analysis.net - Blog Entries - www.malware-traffic-analysis.net redtail probes hxxp 179 236

2024-11-14 - Raspberry Robin infection using WebDAV server 2024-11-14 (THURSDAY): RASPBERRY ROBIN INFECTION USING WEBDAV SERVERNOTES:Zip files are passw... 2024-11-15 10:32:0 | 阅读: 3 | 收藏 | Malware-Traffic-Analysis.net - Blog Entries - www.malware-traffic-analysis.net raspberry robin webdav unit42 saz

2020-12-08 - Files for an ISC diary (recent Qakbot activity) read file error: read notes: is a directory... 2020-12-09 13:43:00 | 阅读: 222 | 收藏 | www.malware-traffic-analysis.net qakbot isc diary qbot malspam

2020-12-07 - Qakbot (Qbot) infection with Cobalt Strike (Beacon) and spambot activity 2020-12-07 - QAKBOT (QBOT) INFECTION WITH COBALT STRIKE (BEACON) AND SPAMBOT ACTIVITYASSOCIATED... 2020-12-08 11:28:00 | 阅读: 253 | 收藏 | www.malware-traffic-analysis.net qakbot spambot cobalt malspam qbot

2020-12-03 - TA551 (Shathak) Word docs with Italian template send Ursnif (Gozi/ISFB) with Pushdo 2020-12-03 - TA551 (SHATHAK) WORD DOCS WITH ITALIAN TEMPLATE SEND URSNIF WITH PUSHDOASSOCIATED F... 2020-12-04 12:43:00 | 阅读: 171 | 收藏 | www.malware-traffic-analysis.net ta551 ursnif pushdo italian malspam

2020-12-03 - Pcap and malware for an ISC diary (traffic analysis quiz) 2020-12-03 - PCAP AND INFO FOR AN ISC DIARY (TRAFFIC ANALYSIS QUIZ)NOTES:The ISC diary is for... 2020-12-04 08:50:00 | 阅读: 238 | 收藏 | www.malware-traffic-analysis.net quiz analysis 565 diary isc

2020-11-23 - Quick post: Hancitor infection with Cobalt Strike 2020-11-23 - QUICK POST: HANCITOR INFECTION WITH COBALT STRIKEASSOCIATED FILES2020-11-23-Hanc... 2020-11-25 10:17:00 | 阅读: 238 | 收藏 | www.malware-traffic-analysis.net hancitor 944 cobalt 382 malspam

2020-11-24 - TA551 (Shathak) Word docs with English template push IcedID 2020-11-20 - TA551 (SHATHAK) WORD DOCS WITH ENGLISH TEMPALTE PUSH ICEDIDASSOCIATED FILES2020-... 2020-11-25 08:50:00 | 阅读: 178 | 收藏 | www.malware-traffic-analysis.net ta551 icedid malspam artifacts 415

2020-11-20 - TA551 (Shathak) Word docs with Japanese template push IcedID 2020-11-20 - TA551 (SHATHAK) WORD DOCS WITH JAPANESE TEMPALTE PUSH ICEDIDASSOCIATED FILES2020... 2020-11-21 08:42:00 | 阅读: 213 | 收藏 | www.malware-traffic-analysis.net ta551 icedid artifacts malspam infections

2020-11-13 - Traffic Analysis Exercise - Quiethub.net 2020-11-13 - TRAFFIC ANALYSIS EXERCISE - QUIETHUBASSOCIATED FILES:Zip archive of the pcap:  2... 2020-11-14 10:24:00 | 阅读: 183 | 收藏 | www.malware-traffic-analysis.net analysis quiethub answers artifacts 920

2020-11-12 - Dridex activity 2020-11-12 - DRIDEX ACTIVITYASSOCIATED FILES2020-11-12-Dridex-IOCs.txt.zip   3.2 kB   (3,190... 2020-11-13 08:07:00 | 阅读: 203 | 收藏 | www.malware-traffic-analysis.net dridex malspam themed 749 artifacts

2020-11-10 - Pcap and malware for an ICS diary (traffic analysis quiz) 2020-11-10 - PCAP AND INFO FOR AN ISC DIARY (TRAFFIC ANALYSIS QUIZ)NOTES:The ISC diary is for... 2020-11-11 10:30:00 | 阅读: 189 | 收藏 | www.malware-traffic-analysis.net isc analysis quiz diary discusses

2020-11-09 - Trickbot from malspam (gtag rob2 and gtag tar2) 2020-11-09 - TRICKBOT FROM MALSPAM (GTAG ROB2 AND GTAG TAR2)ASSOCIATED FILES2020-11-09-Trickb... 2020-11-10 08:43:00 | 阅读: 242 | 收藏 | www.malware-traffic-analysis.net gtag tar2 rob2 filtered shot

2020-11-06 - Possible Agent Tesla (AgentTesla) 2020-11-06 - POSSIBLE AGENT TESLA (AGENTTESLA)ASSOCIATED FILES2020-11-06-IOCs-for-possible-Ag... 2020-11-07 09:21:00 | 阅读: 224 | 收藏 | www.malware-traffic-analysis.net tesla agenttesla pushing 664 shot

2020-11-04 - Quick post: Recent Hancitor activity 2020-11-04 - QUICK POST: RECENT HANCITOR ACTIVITYASSOCIATED FILES - THURSDAY 2020-10-29:2020-... 2020-11-05 08:50:00 | 阅读: 189 | 收藏 | www.malware-traffic-analysis.net hancitor cobalt malspam 714 632

2020-10-20 - Hancitor infection with something and Cobalt Strike 2020-10-20 - HANCITOR WITH SOMETHING AND COBALT STRIKEASSOCIATED FILES:2020-10-20-Hancitor-IO... 2020-10-22 10:57:00 | 阅读: 233 | 收藏 | www.malware-traffic-analysis.net hancitor malspam cobalt 603 444

2020-10-17 - My Patreon mistake 2020-10-17 - MY PATREON MISTAKEEarlier this month, I received the monthly bill for my server hos... 2020-10-17 10:37:00 | 阅读: 200 | 收藏 | www.malware-traffic-analysis.net patreon costs expertise danger bill