Traffic Analysis Exercise — Mike’s computer is “acting weird”
This is another exercise from Malware Traffic Analysis. SCENARIO Mike calls the Help Desk and says his desktop computer is “acting weird” but he refuses to provide any details. The Help Desk reports it to your organization’s Security Operations Center (SOC). A phone call to Mike doesn’t reveal any details. He insists his computer is “acting weird” but will not say what, exactly, is wrong. One of the SOC analysts searched through network traffic and retrieved a pcap related to this activity. This traffic occurred shortly before Mike called the Help Desk. The analyst cannot figure out what happened, so you’ve been asked to take a look.