A trojan written in the python language and trojan analysis
Multi reverse
CMD commands
Change directory
Network
We do network analysis with wireshark.
The server has sent the client whoami command. Client ran the whoami command on itself and sent the reply back to the server.
This time the server requested the ipconfig information and got back its response. We see that the traffic here is not encrypted.