2018-05-24 - QUICK POST: HANCITOR INFECTION TRAFFIC

ASSOCIATED FILES:

• 2018-05-24-Hancitor-malspam-infection-traffic.pcap.zip   2.3 MB (2,313,669 bytes)
• 2018-05-24-malware-from-Hancitor-infection.zip   267 kB (266,611 bytes)

NOTES:

• Got back from vacation today and saw there was Hancitor malspam, so I generated some infection traffic.
• I was too late to get any of the emails from my normal sources.
• Zip archives are password-protected with the standard password.  If you don't know it, look at the "about" page of this website.

Shown above:  Traffic from the infection filtered in Wireshark.

 

Click here to return to the main page.