Malware-Traffic-Analysis.net - 2016-05-20 - Pcap and malware for an ISC diary I wrote

2016-05-20 - PCAP AND MALWARE FOR AN ISC DIARY I WROTE

ASSOCIATED FILES:

ZIP archive of the pcaps: 2016-05-19-EITest-campaign-pcaps.zip 8.4 MB (8,442,425 bytes)

2016-05-19-EITest-Angler-EK.pcap (378,301 bytes)

2016-05-19-EITest-Neutrino-EK.pcap (324,928 bytes)

2016-05-19-post-infection-traffic-for-Gootkit-malware-from-EITest-Neutrino-EK.pcap (8,260,184 bytes)

ZIP archive of the malware and artifacts: 2016-05-19-EITest-campaign-malware-and-artifacts.zip 482.5 kB (482,527 bytes)

2016-05-19-EITest-Angler-EK-flash-exploit.swf (54,519 bytes)

2016-05-19-EITest-Angler-EK-landing-page.txt (66,654 bytes)

2016-05-19-EITest-Angler-EK-payload.exe (24,064 bytes)

2016-05-19-EITest-Angler-EK-silverlight-exploit.zip (169,132 bytes)

2016-05-19-EITest-Neutrino-EK-flash-exploit.swf (71,821 bytes)

2016-05-19-EITest-Neutrino-EK-landing-page.txt (1,077 bytes)

2016-05-19-EITest-Neutrino-EK-payload.exe (221,184 bytes)

2016-05-19-EITest-gate-flash-redirect-both-times.swf (15,540 bytes)

NOTES:

The associated ISC diary is here.

The ZIP files are password-protected with the standard password. If you don't know it, look at the "about" page of this website.

Click here to return to the main page.