This week is all about understanding how Malware looks under the hood in network traffic. This handout will be extremely informaitonal for those who are interested in Incident Response, Malware Analysis, Reverse Engineering, and Network Analysis

Step 1: Time for CARNAGE

Open the Room by clicking HERE.

Step 2: Download the Wireshark file

Download the 2021-09-24-Squirrelwaffle-with-Qakbot-and-Cobalt-Strike.pcap.zip file

The password is: infected_20210924

Don't Forget

• Ask for Help!
• Utilize Google!
• Maybe ChatGPT to understand Wireshark querying? Ehhh?