Normal view

Received — 3 February 2026 ⏭ Malware-Traffic-Analysis.net - Blog Entries

Malware-Traffic-Analysis.net - Blog Entries
2026-02-03: GuLoader for AgentTesla style malware with FTP data exfiltration 3 February 2026 at 19:26

2026-02-03: GuLoader for AgentTesla style malware with FTP data exfiltration

Malware-Traffic-Analysis.net - Blog Entries

3 February 2026 at 19:26

Received — 2 February 2026 ⏭ Malware-Traffic-Analysis.net - Blog Entries

Malware-Traffic-Analysis.net - Blog Entries
2026-02-02: KongTuke ClickFix activity leads to Async RAT 2 February 2026 at 20:51

2026-02-02: KongTuke ClickFix activity leads to Async RAT

Malware-Traffic-Analysis.net - Blog Entries

2 February 2026 at 20:51

Malware-Traffic-Analysis.net - Blog Entries
2026-02-01: Seven days of scans and probes and web traffic hitting my web server 2 February 2026 at 05:44

2026-02-01: Seven days of scans and probes and web traffic hitting my web server

Malware-Traffic-Analysis.net - Blog Entries

2 February 2026 at 05:44

Received — 1 February 2026 ⏭ Malware-Traffic-Analysis.net - Blog Entries

Malware-Traffic-Analysis.net - Blog Entries
2026-01-31: Traffic analysis exercise: Lumma in the room-ah! 31 January 2026 at 06:50

2026-01-31: Traffic analysis exercise: Lumma in the room-ah!

Malware-Traffic-Analysis.net - Blog Entries

31 January 2026 at 06:50

Malware-Traffic-Analysis.net - Blog Entries
2026-01-30: PhantomStealer infection 31 January 2026 at 04:18

2026-01-30: PhantomStealer infection

Malware-Traffic-Analysis.net - Blog Entries

31 January 2026 at 04:18

Received — 29 January 2026 ⏭ Malware-Traffic-Analysis.net - Blog Entries

Malware-Traffic-Analysis.net - Blog Entries
2026-01-29: njRAT infection with MassLogger 29 January 2026 at 05:47

2026-01-29: njRAT infection with MassLogger

Malware-Traffic-Analysis.net - Blog Entries

29 January 2026 at 05:47

Malware-Traffic-Analysis.net - Blog Entries
2026-01-22: SmartApeSG uses ClickFix technique to push Remcos RAT 29 January 2026 at 03:06

2026-01-22: SmartApeSG uses ClickFix technique to push Remcos RAT

Malware-Traffic-Analysis.net - Blog Entries

29 January 2026 at 03:06

Malware-Traffic-Analysis.net - Blog Entries
2026-01-20: Lumma Stealer infection with follow-up malware 29 January 2026 at 00:55

2026-01-20: Lumma Stealer infection with follow-up malware

Malware-Traffic-Analysis.net - Blog Entries

29 January 2026 at 00:55

Malware-Traffic-Analysis.net - Blog Entries
2026-01-20: VIP Recovery infection with FTP data exfiltration traffic 29 January 2026 at 00:07

2026-01-20: VIP Recovery infection with FTP data exfiltration traffic

Malware-Traffic-Analysis.net - Blog Entries

29 January 2026 at 00:07

Malware-Traffic-Analysis.net - Blog Entries
2026-01-20: Xworm infection 29 January 2026 at 00:06

2026-01-20: Xworm infection

Malware-Traffic-Analysis.net - Blog Entries

29 January 2026 at 00:06

Received — 20 January 2026 ⏭ Malware-Traffic-Analysis.net - Blog Entries

Malware-Traffic-Analysis.net - Blog Entries
2026-01-19: Six days of scans and probes and web traffic hitting my web server 20 January 2026 at 04:27

2026-01-19: Six days of scans and probes and web traffic hitting my web server

Malware-Traffic-Analysis.net - Blog Entries

20 January 2026 at 04:27

Malware-Traffic-Analysis.net - Blog Entries
2026-01-15: XLoader (Formbook) infection 20 January 2026 at 04:26

2026-01-15: XLoader (Formbook) infection

Malware-Traffic-Analysis.net - Blog Entries

20 January 2026 at 04:26

Malware-Traffic-Analysis.net - Blog Entries
2026-01-14: Lumma Stealer infection with follow-up malware 20 January 2026 at 04:25

2026-01-14: Lumma Stealer infection with follow-up malware

Malware-Traffic-Analysis.net - Blog Entries

20 January 2026 at 04:25

Received — 11 January 2026 ⏭ Malware-Traffic-Analysis.net - Blog Entries

Malware-Traffic-Analysis.net - Blog Entries
2026-01-10: Ten days of scans and probes and web traffic hitting my web server 11 January 2026 at 18:01

2026-01-10: Ten days of scans and probes and web traffic hitting my web server

Malware-Traffic-Analysis.net - Blog Entries

11 January 2026 at 18:01

Malware-Traffic-Analysis.net - Blog Entries
2026-01-09: VIP Recovery infection from email attachment 9 January 2026 at 22:32

2026-01-09: VIP Recovery infection from email attachment

Malware-Traffic-Analysis.net - Blog Entries

9 January 2026 at 22:32

Malware-Traffic-Analysis.net - Blog Entries
2026-01-08: KongTuke ClickFix activity 8 January 2026 at 21:29

2026-01-08: KongTuke ClickFix activity

Malware-Traffic-Analysis.net - Blog Entries

8 January 2026 at 21:29

Malware-Traffic-Analysis.net - Blog Entries
2026-01-07: MassLogger infection from email attachment 8 January 2026 at 02:43

2026-01-07: MassLogger infection from email attachment

Malware-Traffic-Analysis.net - Blog Entries

8 January 2026 at 02:43

Malware-Traffic-Analysis.net - Blog Entries
2026-01-06: SmartApeSG CAPTCHA page uses ClickFix technique for Remcos RAT 6 January 2026 at 18:48

2026-01-06: SmartApeSG CAPTCHA page uses ClickFix technique for Remcos RAT

Malware-Traffic-Analysis.net - Blog Entries

6 January 2026 at 18:48

Malware-Traffic-Analysis.net - Blog Entries
2026-01-01: Lumma Stealer infection with follow-up malware 1 January 2026 at 22:31

2026-01-01: Lumma Stealer infection with follow-up malware

Malware-Traffic-Analysis.net - Blog Entries

1 January 2026 at 22:31

Malware-Traffic-Analysis.net - Blog Entries
2025-12-30: Lumma Stealer infection with follow-up malware 31 December 2025 at 06:30

2025-12-30: Lumma Stealer infection with follow-up malware

Malware-Traffic-Analysis.net - Blog Entries

31 December 2025 at 06:30