2016-12-15 - PCAP AND MALWARE FOR AN ISC DIARY
NOTES:
- The associated ISC diary is for Thursday 2016-12-15: Domaincop malspam
- ZIP files are password-protected with the standard password. If you don't know it, look at the "about" page of this website.
ASSOCIATED FILES:
- ZIP archive of the spreadsheet: 2016-12-15-ISC-diary-malspam-info.csv.zip 1.5 kB (1,514 bytes)
- 2016-12-15-ISC-diary-malspam-info.csv (4,707 bytes)
- ZIP archive of the pcaps: 2016-12-15-ISC-diary-pcaps.zip 601 kB (600,754 bytes)
- 2016-12-13-domaincop247.com-malspam-traffic.pcap (420,368 bytes)
- 2016-12-15-ccnotice.net-malspam-traffic.pcap (442,801 bytes)
- ZIP archive of the emails: 2016-12-15-ISC-diary-malspam-emails.zip 39 kB (39,467 bytes)
- 2016-11-22-domaincop.org-malspam-1554-UTC.eml (4,809 bytes)
- 2016-11-22-domaincop.org-malspam-1559-UTC.eml (4,731 bytes)
- 2016-11-22-domaincop.org-malspam-1604-UTC.eml (4,760 bytes)
- 2016-11-22-domaincop.org-malspam-1606-UTC.eml (4,681 bytes)
- 2016-11-22-domaincop.org-malspam-1607-UTC.eml (4,742 bytes)
- 2016-11-22-domaincop.org-malspam-1609-UTC.eml (4,796 bytes)
- 2016-11-22-domaincop.org-malspam-1613a-UTC.eml (4,803 bytes)
- 2016-11-22-domaincop.org-malspam-1613b-UTC.eml (4,822 bytes)
- 2016-11-22-domaincop.org-malspam-1614-UTC.eml (4,816 bytes)
- 2016-11-22-domaincop.org-malspam-1615-UTC.eml (4,801 bytes)
- 2016-12-13-domaincop247.com-malspam-1804-UTC.eml (5,032 bytes)
- 2016-12-13-domaincop247.com-malspam-1805-UTC.eml (5,048 bytes)
- 2016-12-13-domaincop247.com-malspam-1808-UTC.eml (5,047 bytes)
- 2016-12-13-domaincop247.com-malspam-2004-UTC.eml (5,056 bytes)
- 2016-12-14-ccnotice.net-malspam-1415-UTC.eml (3,514 bytes)
- 2016-12-14-ccnotice.net-malspam-1416-UTC.eml (3,578 bytes)
- ZIP archive of the malware and artifacts: 2016-12-15-ISC-diary-malware-and-artifacts.zip 1.1 MB (1,132,643 bytes)
- 2016-12-13-Cerber-from-malspam-decryption-instructions-tmpAFDD.bmp (1,920,054 bytes)
- 2016-12-13-Cerber-from-malspam-decryption-instructions_README_YRATX9H_.hta (67,748 bytes)
- 2016-12-13-Cerber-ransomware-from-malspam.exe (255,018 bytes)
- 2016-12-13-Domain_Abuse_Report_Viewer.js (9,032 bytes)
- 2016-12-14-Cerber-from-malspam-decryption-instructions-tmp6B4.bmp (1,920,054 bytes)
- 2016-12-14-Cerber-from-malspam-decryption-instructions_README_OB530_.hta (66,461 bytes)
- 2016-12-14-Cerber-ransomware-from-malspam.exe (262,111 bytes)
- 2016-12-14-Invoice_349KL.doc (206,120 bytes)
Click here to return to the main page.