2018-06-27 - QUICK POST: HANCITOR INFECTION WITH ZEUS PANDA BANKER

ASSOCIATED FILES:

 

NOTES:

 


Shown above:  Flow chart for today's activity, if I'm correct in my assumptions.

 


Shown above:  Headers from an email example someone acquired for me today.

 


Shown above:  Traffic from this infection filtered in Wireshark.

 


Shown above:  Today's entire malspam run seemed like a test.

 


Shown above:  What I assume was a Hancitor malware binary seen during today's infection.

 

Click here to return to the main page.