Filters.docx

Data Exfiltration:

Malware-Traffic-Analysis.net - 2025-01-09: CVE-2017-0199 XLS --> HTA --> VBS --> steganography --> DBatLoader/GuLoader style malware

Network Scanning & Probes:

Malware-Traffic-Analysis.net - 2026-02-01: Seven days of scans and probes and web traffic hitting my web server

Log4J Attempted Exploits:

Malware-Traffic-Analysis.net - 2022-01-03 (Monday) - Pcap from web server with Log4j attempts and other probing/scanning

Mini Incident Response Exercise:

Malware-Traffic-Analysis.net - 2017-12-15 - Traffic analysis exercise - Two pcaps, two emails, two mysteries!

Extra Help:

Don’t be afraid to ask us for help, use AI, or search online for any information or help (We’re also learning this :) )

Wireshark User Guide and Documentation:

Wireshark User’s Guide: Version 4.7.0

Wireshark • Go Deep | Documentation

Filters.docx