Citadel/Kazy Malware Sample Loaded from us.exe qawsf1gy.bget.ru file.php PCAP file download

https://www.virustotal.com/cs/file/00f9c0fd7b6ab235bf07a4f1e235940e3e40938c5932a7283568f36d76df673b/analysis/ https://www.virustotal.com/cs/domain/qawsf1gy.bget.ru/information/ http://cybercrime-tracker.net/ccamdetail.php?hash=8a76acba63abcdb9cfc0a71e8c1358c74e8db83b   SPYWARE.CITADEL.ATMOS Sample: 8a76acba63abcdb9cfc0a71e8c1358c74e8db83b SHA256: 7331a96dbd2bec70027e259f1cbdaf5c7733b318da39812b22111f85ae730860 Request: Tayuya [2016/09/20 – 23:09:39] Callback: qawsf1gy.bget.ru Gate: http://qawsf1gy.bget.ru/file.php|file=us.xml 2016-09-20 10:29:07.228008 IP 192.168.1.102.59912 > 192.168.1.100.80: Flags [P.], seq 1:333, ack 1, …

Read More