Quick Malware Analysis: ICEDID BOKBOT infection pcap from 2023-07-25 #12061
Locked
dougburks
announced in
Quick Malware Analysis
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
This is a fun one!
Pivot from alerts to metadata to full packet capture and then send that PCAP to NetworkMiner to decode the VNC traffic!
More details and screenshots:
https://blog.securityonion.net/2023/12/quick-malware-analysis-icedid-bokbot.html
Beta Was this translation helpful? Give feedback.
All reactions