Security Onion Blog

Friday, August 20, 2021

Quick Malware Analysis: malware-traffic-analysis.net Bazarloader pcap from 2021-08-12

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/08/12/index.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:











at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Search This Blog

Featured Post

Top 5 Reasons to Sign Up for our 4-day Security Onion Fundamentals for Analysts & Admins Class in June 2024

Security Onion Solutions has been teaching Security Onion classes since 2014. Since that time, we've taught students around the globe to...

Popular Posts

Blog Archive