2015-09-23 - TRAFFIC ANALYSIS EXERCISE - HALLOWEEN-THEMED HOST NAMES

ASSOCIATED FILES:

ZIP files on this site are password-protected with the standard password.  If you don't know it, look at the "about" page of this website.

 

SCENARIO

You have two pcap files of traffic.  Traffic from each pcap indicates an infection for a Windows computer.  The computers have Halloween-themed host names.  Your task?  Document what caused these two infections.


If only it were this simple...

 

REPORTING

For each infection, your documentation should include:

 

ANSWERS