Malware-Traffic-Analysis.net - 2020-02-04 - traffic and malware for an ISC diary (SocGholish)

2020-02-04 - PCAP AND MALWARE FOR AN ISC DIARY (SOCGHOLISH)

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

REFERENCE:

The associated ISC diary is Fake browser update pages are "still a thing"

ASSOCIATED FILES:

2020-02-04-socgholish-traffic-example.pcap.zip 1.3 MB (1,270,832 bytes)

2020-02-04-socgholish-traffic-example.pcap (1,499,381 bytes)

2020-02-04-SocGholish-malware-and-artifacts.zip 125 kB (124,768 bytes)

2020-02-04-sodality.mandmsolicitors.com-1-of-3.txt (3,120 bytes)

2020-02-04-sodality.mandmsolicitors.com-2-of-3.txt (4,920 bytes)

2020-02-04-sodality.mandmsolicitors.com-3-of-3.txt (4,031 bytes)

2020-02-04-trace.mukandratourandtravels.com-initial.txt (47,684 bytes)

Firefox.Update.4ee488.zip (32,231 bytes)

Firefox.js (90,690 bytes)

client32.ini (596 bytes)

presentationhost.exe (105,848 bytes)

2020-02-04-another-pcap.zip 5.0 MB (4,983,681 bytes)

Click here to return to the main page.