ec74a5c51106f0419184d0dd08fb05bc Archives

Cookie parameters from GzipLoader request in NetworkMiner 2.8.1

Forensic Timeline of an IcedID Infection

Erik Hjelmvik | October 12, 2023 | BackConnect, Cobalt Strike, CobaltStrike, ec74a5c51106f0419184d0dd08fb05bc, GzipLoader, IcedID, JA3S, Keyhole, Keylog, NetworkMiner, VNC, Windows Sandbox

The BackConnect and VNC parsers that were added to NetworkMiner 2.8.1 provide a unique possibility to trace the steps of an attacker with help of captured network traffic from a hacked computer ...

NETRESEC Network Security Blog

How to Identify IcedID Network Traffic

Erik Hjelmvik | February 15, 2023 | a0e9f5d64349fb13191bc781f81f42e1, b523e3d33e7795de49268ce7744d7414aa37d1db, beacon, CapLoader, ec74a5c51106f0419184d0dd08fb05bc, GzipLoader, IcedID, Periodic connections, periodicity, video

Brad Duncan published IcedID (Bokbot) from fake Microsoft Teams page earlier this week. In this video I take a closer look at the PCAP file in that blog post. The video cannot ...

NETRESEC Network Security Blog

Screenshot of original infection email from Unit 42

Emotet C2 and Spam Traffic Video

Erik Hjelmvik | May 9, 2022 | 37cdab6ff1bd1c195bacb776c5213bf2, 51c64c77e60f3980eea90869b68c58a8, C2, Command And Control, ec74a5c51106f0419184d0dd08fb05bc, Emotet, fd4bc6cea4877646ccd62f0792ec0b62, JA3, JA3S, pcap, smtp, SMTPS, Spam, spambot, STARTTLS, video, videotutorial, Windows Sandbox

This video covers a life cycle of an Emotet infection, including initial infection, command-and-control traffic, and spambot activity sending emails with malicious spreadsheet attachments to infect new victims. The video cannot be ...

NETRESEC Network Security Blog

ec74a5c51106f0419184d0dd08fb05bc

Forensic Timeline of an IcedID Infection

How to Identify IcedID Network Traffic

Emotet C2 and Spam Traffic Video

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On