Threat Lab is a platform dedicated only to the research work related to malware samples or any other technology. Find all our research related articles in Threat lab.
On June 30, 2025, the team at Stratascale Cyber Research Unit (CRU) identified a local privilege escalation vulnerability in sudo, which is now being tracked as CVE-2025-32463. This vulnerability is related to sudo’s chroot option which can allow attackers to escalate their privileges to root on an affected system. This guide provides a comprehensive overview … Read more
What is Code Obfuscation? Code obfuscation is a technique used by malware authors and other malicious actors to conceal their code’s true intentions and evade detection by security software. Code obfuscation is the process of making software code difficult to understand, analyze, and reverse-engineer. It is a technique used by malware authors and other malicious … Read more
QBot is a banking trojan that steals victims’ credentials and is usually spread via phishing campaigns. QBot aka QakBot malware has been there for a decade as it frequently evolves new techniques to attack victims. Recently, several articles have been making rounds regarding the new variant of QakBot leverages DLL Side Loading technique to spread … Read more
So, Emotet’s back after a hiatus of around 5 months and, as per claims around the internet, delivered around 80k spam emails in 24hr on its return. So, let’s see what the Maldoc being delivered this time looks like. We downloaded this particular sample from hxxp://www[.]ahbro[.]com/wp-content/browse/omxl046951300lyxdvye9ksa2j. Let’s begin then. First, let’s see how the latest … Read more
Ever received a Security Incident where a user machine got infected by a malicious attachment? And as an Incident Responder, you suspect having a malicious macro that takes advantage of Windows’ own legitimate tools like CMD and PowerShell. Maybe you are not sure how to quickly extract and analyze macros without going through a lot … Read more
Hi readers! This will probably be my first technical post regarding the deep analysis of any malware sample. If you would have followed my blog, then you must be aware that most of my posts include building concepts related to malware analysis. However, I decided to take a break from that for a while and … Read more