Malware-Traffic-Analysis.net - 2017-10-31 - Quick post: Hancitor infection with Zeus Panda Banker

2017-10-31 - QUICK POST: HANCITOR INFECTION WITH ZEUS PANDA BANKER

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

ASSOCIATED FILES:

2017-10-31-Hancitor-infection-with-Zeus-Panda-Banker.pcap.zip 334.9 kB (334,917 bytes)

2017-10-31-Hancitor-infection-with-Zeus-Panda-Banker.pcap (479,535 bytes)

2017-10-31-emails-and-malware-and-notes-for-Hancitor-activity.zip 232.9 kB (232.898 bytes)

2017-10-31-Hancitor-maldoc-receipt_561268.doc (224,768 bytes)

2017-10-31-Hancitor-malspam-14-examples.txt (23,018 bytes)

2017-10-31-Hancitor-notes.txt (4,245 bytes)

2017-10-31-Zeus-Panda-Banker.exe (151,040 bytes)

NOTES

See "2017-10-31-Hancitor-notes.txt" in the malware archive for domains, IP addresses, SHA256 hashes, URLs, etc.

Shown above: Traffic from the infection filtered in Wireshark.

Click here to return to the main page.