Question: Project #1 will begin by introducing you to the process of malware traffic analysis. Review the following situations utilizing Wireshark: Situation: Traffic Analysis Exercise Download

Project #1 will begin by introducing you to the process of malware traffic analysis. Review the following situations utilizing Wireshark: Situation: Traffic Analysis Exercise Download this PCAP source file Review the sample analysisPreview the document discussing these questions: What was the date and time of the infection? What is the MAC address of the infected Windows computer? What is the IP address of the infected Windows computer? What is the host name of the infected Windows computer? What type of malware was the computer infected with? What is the name of the malware that infected the user's computer? What exploit kit was used to infect the user's computer? What compromised website kicked off the infection chain of events? Before the Windows computer was infected, what did the user search for on Bing? Which campaign(s) used the exploit kit noted in the pcap? What are the indicators of compromise (IOCs) from the pcap?

Link :http://www.malware-traffic-analysis.net/2017/01/28/index.html

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Screen shot of the 4 panes you see when you run the dns.cap file in Wireshark. Question 4.3.1: In Packet No. 28, what is the Source Port of the UDP data? (Hint: What does UDP stand for?) Question...

help with project Wireshark Assignment 1. Overview Wireshark is an open source application freely available on the Internet that allows you to capture packets as they appear at the network adaptor...

Study Guide Strategic Business Management By A. J. Cataldo About the Author A. J. Cataldo is currently a professor of accounting at West Chester University, in West Chester, Pennsylvania. He holds a...

1. Which of the following principles describes how a security analyst should communicate during an incident? A. The communication should be limited to trusted parties only. B. The communication...

Managing Scope Changes Case Study Scope changes on a project can occur regardless of how well the project is planned or executed. Scope changes can be the result of something that was omitted during...

atter? 7.8 AD-ROBIC EXERCISES A. Briefing for New Business Select a business in your town that is of interest to you. This can be a retail business with competition in the market. Or it can be a...

tho1978X_pt2.qxd 10/18/2000 11:26 AM Page C-1 Cases in Strategic Management tho1978X_pt2.qxd 10/18/2000 11:26 AM Page C-2 A Guide to Case Analysis I keep six honest serving men (They taught me all I...

Hello, Would you please review the attached assignment? I know I have errors in and this assignment carries into the rest of the course so I need to get it corrected to move forward. I have attached...

Python and most Python libraries are free to download or use, though many users use Python through a paid service. Paid services help IT organizations manage the risks associated with the use of...

Write a Lewis structure for each of the following organic molecules All the Diagrams are included in the Solution

A contractor needs to import 10,000 (compacted volume) of soil to build a small dam. Construction specifications require the Compacted to go% relative compaction with the maximum dry unit weight of...

19. Bag A contains 20 potatoes, 4 of which are rotten. Bag B contains 12 potatoes, 3 of which are rotten. David selects one potato at random from each bag. (i) Complete the tree diagram below to show...

Why is it important for organizations to assess market based pay? Why should organizations base their pay on the market? Why is this important for organizations to consider when setting their pay...

6. Go to http://agelesslearner.com/intros/adultlearning.html, a site authored by Marcia L. Conner about how adults learn. Scroll down to the bottom of the page and click on Learning Styles...

7. Go to www.schneider.com, the Web site for Schneider National, a transportation management company that provides logistics and trucking services. Click on Drivers. Scroll down the page and click on...

5. Go to cs.gmu.edu/cne/modules/dau/stat, the Web site for an interactive tutorial that provides a refresher on probability and statistics. Click on Index. Choose a topic (such as Data Analysis)....