Malware-Traffic-Analysis.net - 2019-07-08 - Quick post: Gozi/ISFB (Ursnif) infection with Dridex and Powershell Empire

2019-07-08 - QUICK POST: GOZI/ISFB (URSNIF) INFECTION WITH DRIDEX AND POWERSHELL EMPIRE

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

ASSOCIATED FILES:

2019-07-08-Ursnif-infection-wth-Dridex-and-PowerShell-Empire.pcap.zip 7.4 MB (7,444,379 bytes)
2019-07-08-malware-and-artifacts-from-Ursnif-infection-with-Dridex.zip 5.6 MB (5,637,971 bytes)

NOTES:

Thanks to @SaurabhSha15 for tweeting info that allowed me to generate this infection traffic (link).

Click here to return to the main page.