Internet Storm Center
Sign In
Sign Up
Handler on Duty:
Didier Stevens
Threat Level:
green
Date
Author
Title
2021-09-15
Brad Duncan
Hancitor campaign abusing Microsoft's OneDrive
2021-07-09
Brad Duncan
Hancitor tries XLL as initial malware file
2021-06-30
Brad Duncan
June 2021 Forensic Contest: Answers and Analysis
2021-01-13
Brad Duncan
Hancitor activity resumes after a hoilday break
2020-03-12
Brad Duncan
Hancitor distributed through coronavirus-themed malspam
2019-11-20
Brad Duncan
Hancitor infection with Pony, Evil Pony, Ursnif, and Cobalt Strike
2019-02-06
Brad Duncan
Hancitor malspam and infection traffic from Tuesday 2019-02-05
2018-12-05
Brad Duncan
Campaign evolution: Hancitor changes its Word macros
2018-10-30
Brad Duncan
Campaign evolution: Hancitor malspam starts pushing Ursnif this week
2017-10-17
Brad Duncan
Hancitor malspam uses DDE attack
2017-02-10
Brad Duncan
Hancitor/Pony malspam
2016-12-05
Didier Stevens
Hancitor Maldoc Videos
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Have you seen our swag?
Buy SANS ISC Gear