2021-05-24 (MONDAY) - QUICK POST: HANCITOR INFECTION WITH FICKER STEALER AND COBALT STRIKE

ASSOCIATED FILES:

• 2021-05-24-some-of-the-Hancitor-IOCs.txt.zip   3.1 kB   (3,073 bytes)
• 2021-05-24-Hancitor-malspam-35-examples.zip   85.4 kB   (85,401 bytes)
• 2021-05-24-Hancitor-infection.pcap.zip   9.5 MB   (9,527,558 bytes)
• 2021-05-24-Hancitor-malware.zip   5.3 MB   (5,253,814 bytes)

NOTES:

• All zip archives on this site are password-protected.  If you don't know the password, see the "about" page of this website.

 

IMAGES

Shown above:  Traffic from an infection filtered in Wireshark.

 

Click here to return to the main page.