Last Updated: 2022-02-16 05:19:44 UTC
by Brad Duncan (Version: 1)
Today's diary is a quick post of an Astaroth (Guildma) malware infection I generated early on Wednesday 2022-02-16 from a malicious email targeting a Brazil-based recipient on Tuesday 2022-02-15.
Images from the infection
A packet capture (pcap) of the Astaroth infection traffic with the associated email and malware/artifacts are here.
brad [at] malware-traffic-analysis.net