Security Onion Blog

Wednesday, September 1, 2021

Quick Malware Analysis: malware-traffic-analysis.net STRRAT pcap from 2021-08-30

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/08/30/index2.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:











at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Search This Blog

Featured Post

Thanks to our Customers and Community for 11 Years!

We recently celebrated 16 years of the Security Onion project and today we celebrate 11 years of Security Onion Solutions as a company! Than...

Popular Posts

Blog Archive