Attack Analysis — Cobalt Strike C2 & Hancitor/Malware

Michael Koczwara

4 min readDec 23, 2021

--

Incident Response & PCAP/Attack Analysis

Agenda:

PCAP Analysis.
Malicious Macro Analysis.
CyberChef & VT Analysis.
Cobalt Strike C2.
Short Summary.

PCAP Analysis

Michael Koczwara

Written by Michael Koczwara

Security Researcher

Recommended from Medium

Invictus Incident Response

Email Forwarding Rules in Microsoft 365

The ultimate guide to analysing and understanding email forwarding rules in the Unified Audit Log (UAL)

8 min readFeb 20

--

S12 - H4CK

Process Code Injection

Introduction

4 min readDec 18, 2022

--

Lists

Staff Picks

329 stories83 saves

Stories to Help You Level-Up at Work

19 stories53 saves

Self-Improvement 101

20 stories107 saves

Productivity 101

20 stories116 saves

Antivirus vs EDR vs XDR © 2022 leeshanok

Richard de Vries
in
Tales from a Security Professional

Is EDR with Sysmon enough? Or do you need XDR as well?

Although the difference is just one letter, the level of protection is a different story…

3 min readJan 29

--

Michael Koczwara

Adversaries Infrastructure-Ransomware Groups, APTs, and Red Teams

What you can learn from scanning adversaries' infra?

4 min readDec 30, 2022

--

Michael Koczwara

Sliver C2 Implant Analysis

Sliver C2 Implant Analysis

8 min readJan 12

--

Adam Goss

Certified Red Team Operator (CRTO) Review

The Certified Red Team Operator (CRTO) course is an offering from Zero Point Security that aims to teach “the basic principles, tools, and…

8 min readDec 13, 2022

--

See more recommendations

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Text to speech