QBot is a banking trojan that steals victims’ credentials and is usually spread via phishing campaigns. QBot aka QakBot malware has been there for a decade as it frequently evolves new techniques to attack victims. Recently, several articles have been making rounds regarding the new variant of QakBot leverages DLL Side Loading technique to spread … Read more
Although, nearly every advanced computer can do a few cyber security tasks. But, to perform them with no waiting time, no slow speed, and without any issues, you may require the nicest computer. Are you searching for the best computer for cyber security? Read on this article as here you will find the excellent options … Read more
In this article, we will look at the PE Structure or Portable Executable file format (PE File Format), which is important in understanding the internal structure of an executable file. Once you have an overall idea about what’s inside the executable file and how it works in Windows, it will become easy to analyze any … Read more
In this article, we’ll take a look at some of the most common malware persistence mechanisms as malware likes to persist whenever they take control of any compromised system. Windows has a lot of AutoStart Extension Points (ASEP) which makes it easier for the malware to persist so that it can continue doing its work … Read more
So, Emotet’s back after a hiatus of around 5 months and, as per claims around the internet, delivered around 80k spam emails in 24hr on its return. So, let’s see what the Maldoc being delivered this time looks like. We downloaded this particular sample from hxxp://www[.]ahbro[.]com/wp-content/browse/omxl046951300lyxdvye9ksa2j. Let’s begin then. First, let’s see how the latest … Read more
Ever received a Security Incident where a user machine got infected by a malicious attachment? And as an Incident Responder, you suspect having a malicious macro that takes advantage of Windows’ own legitimate tools like CMD and PowerShell. Maybe you are not sure how to quickly extract and analyze macros without going through a lot … Read more