2018-10-31 - TRAFFIC ANALYSIS EXERCISE - HAPPY HALLOWEEN!
NOTICE:
- The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.
ASSOCIATED FILES:
- Zip archive of the pcaps: 2018-10-31-traffic-analysis-exercise.pcap.zip 4.6 MB (4,571,827 bytes)
SCENARIO
Review the pcap and draft an incident report. Your report should contain:
- Date and time of the activity (in GMT or UTC)
- The account name or username from the infected Windows computer
- The host name of the infected Windows computer
- The MAC address of the infected Windows computer
- SHA256 file hashes for any malware from the pcap
- What type of infection this is
ANSWERS
- Click here for the answers.
Click here to return to the main page.