Tag: malware
-
WARMCOOKIE Incident Walk-Through
This walk-through will be dissecting a WARMCOOKIE infection chain from the perspective of a network packet capture and Suricata alerts. The various artefacts for this incident are kindly provided by @malware_traffic and located at malware-traffic-analysis.net.
-
Carving the IcedId - Part 3
Welcome back to this series, analysing IcedId malware artefacts.
-
Carving the IcedId - Part 2
Welcome back to this series, analysing IcedId malware artefacts.
-
Carving the IcedId
In a world dominated with endpoint detection and response agents, coming across PCAP may be a rare occurrence.