2020-04-07 - PCAP AND MALWARE FOR AN ISC DIARY (ZLOADER)

NOTES:

• The ISC diary is for Wednesday 2020-04-08:  German malspam pushes ZLoader malware
• Zip files are password-protected.  If you don't know the password, look at the "about" page of this website.

 

ASSOCIATED FILES:

• 2020-04-07-ZLoader-IOCs.txt.zip   1.9 kB (1,936 bytes)

• 2020-04-07-ZLoader-IOCs.txt   (4,273 bytes)

• 2020-04-07-ZLoader-malspam-2-email-examples.zip   731 kB (731,383 bytes)

• 2020-04-07-ZLoader-malspam-example-1-of-2.eml   (471,053 bytes)
• 2020-04-07-ZLoader-malspam-example-2-of-2.eml   (492,549 bytes)

• 2020-04-07-ZLoader-infection-traffic-2-pcaps.zip   55.7 kB (55,689 bytes)

• 2020-04-07-ZLoader-infection-traffic-1st-run.pcap   (59,101 bytes)
• 2020-04-07-ZLoader-infection-traffic-1st-run-SSLKeysLogFile.txt   (2,124 bytes)
• 2020-04-07-ZLoader-infection-traffic-2nd-run.pcap   (59,202 bytes)

• 2020-04-07-ZLoader-malware-and-artifacts.zip   1.7 MB (1,658,785 bytes)

• 2020-04-07-ZLoader-DLL-binary.bin   (877,056 bytes)
• 2020-04-07-registry-update-for-ZLoader.txt   (668 bytes)
• SQA499CWFY55.vbs   (1,211,873 bytes)
• SQA499CWFY55.zip   (357,876 bytes)
• vcs_lik95-8455713771-45095139699-273.vbs   (1,196,653 bytes)
• vcs_lik95-8455713771-45095139699-273.zip   (346,978 bytes)

 

Click here to return to the main page.