Thursday, August 12, 2021

Quick Malware Analysis: malware-traffic-analysis.net pcap from 2021-05-24 IcedID

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/05/24/index.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:












No comments:

Search This Blog

Featured Post

Security Onion 2.3 has reached End Of Life

On 10/6/2023, we announced a 6-month EOL notice for Security Onion 2.3: https://blog.securityonion.net/2023/10/6-month-eol-notice-for-securi...

Popular Posts

Blog Archive