PCAP-based analysis of CryptoLocker and Word-Dropper malware samples using Wireshark and REMnux. Focus on DNS, HTTP, and TLS artifacts to identify adversary behavior and exfiltration attempts.
network-forensics wireshark malware-analysis http-post mitre-attack dns-analysis pcap-analysis remnux tls-analysis word-dropper
-
Updated
Jun 18, 2025