Hancitor infection mechanics and network traffic decoding
In this blog post I’ll show some analysis I did couple of months ago of a randomly picked Hancitor malware from the malware-traffic-analysis.net web site. The link to the PCAP can be found here.