Malware-Traffic-Analysis.net - 2019-11-08 - Data dump: Emotet epoch 2 infection with Trickbot gtag mor40

2019-11-08 - DATA DUMP: EMOTET EPOCH 2 INFECTION WITH TRICKBOT GTAG MOR40

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

ASSOCIATED FILES:

2019-11-08-Emotet-epoch-2-infection-with-Trickbot-gtag-mor40.pcap.zip 51.7 MB (51,747,645 bytes)
2019-11-08-malware-and-artifacts-from-Emotet-infection-with-Trickbot.zip 24.4 MB (24,367,260 bytes)

NOTES:

This infection was in an Active Directory (AD) environment, where Trickbot spread from the infected Windows client at 172.17.1[.]101 to the domain controller (DC) at 172.17.1[.]7.

Click here to return to the main page.