Malware-Traffic-Analysis.net - 2020-06-09 - traffic and malware for an ISC diary (ZLoader)

2020-06-09 - PCAP AND MALWARE FOR AN ISC DIARY (ZLOADER)

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

REFERENCE:

The associated ISC diary is Job application-themed malspam pushes ZLoader

ASSOCIATED FILES:

2020-06-09-CV-malspam-7-examples.zip 2.0 MB (2,007,343 bytes)

2020-05-13-CV-malspam-1750-UTC.eml (485,866 bytes)

2020-05-22-CV-malspam-1705-UTC.eml (472,190 bytes)

2020-06-03-CV-malspam-1638-UTC.eml (399,589 bytes)

2020-06-04-CV-malspam-1904-UTC.eml (394,685 bytes)

2020-06-04-CV-malspam-2139-UTC.eml (399,458 bytes)

2020-06-05-CV-malspam-1806-UTC.eml (402,198 bytes)

2020-06-05-CV-malspam-1958-UTC.eml (399,590 bytes)

2020-06-09-XLS-attachments-from-malspam.zip 1.9 MB (1,906,895 bytes)

Fiona CV.xls (353792 bytes)

Jonna Mieles CV.xls (296448 bytes)

Lanelle Sigler CV.xls (294400 bytes)

Lavone Slaymaker CV.xls (348160 bytes)

Louanne Polite CV 1-of-2.xls (290816 bytes)

Louanne Polite CV 2-of-2.xls (294400 bytes)

Woodrow Swiney CV.xls (294400 bytes)

2020-06-09-ZLoader-infection-traffic.pcap.zip 5.9 MB (5,864,722 bytes)

2020-06-09-ZLoader-infection-traffic.pcap (6,486,687 bytes)

2020-06-09-ZLoader-malware-and-artifacts.zip 5.4 MB (5,415,217 bytes)

2020-06-09-registry-update-to-keep-ZLoader-persistent.txt (311 bytes)

Users/username/AppData/Local/Temp/isen.dll (503,296 bytes)

Users/username/AppData/Roaming/Meul/

Users/username/AppData/Roaming/Kiwo/ruaxuk.ekaf (241,649 bytes)

Users/username/AppData/Roaming/Piyfoq/egquivig.dy (276,089 bytes)

Users/username/AppData/Roaming/Ehpalu/dyluykg.zue (973,999 bytes)

Users/username/AppData/Roaming/Ocugiq/cyyqmaop.xa (1,943,995 bytes)

Users/username/AppData/Roaming/Uwgoz/kupayr.yx (120,470 bytes)

Users/username/AppData/Roaming/Amly/dezavyaq.af (381,944 bytes)

Users/username/AppData/Roaming/Ciho/ovulam.az (0 bytes)

Users/username/AppData/Roaming/Kyroep/vuep.ki (321,090 bytes)

Users/username/AppData/Roaming/Okge/anin.dll (503,296 bytes)

Users/username/AppData/Roaming/Yvyv/

ZIIuhIe/rGmFquU/PLyUKBP.dll (503,296 bytes)

Click here to return to the main page.