Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: SANS Internet Storm Center Diaries by Keyword

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title
2021-11-04Brad DuncanOctober 2021 Forensic Contest: Answers and Analysis
2021-09-23Xavier MertensExcel Recipe: Some VBA Code with a Touch of Excel4 Macro
2021-06-30Brad DuncanJune 2021 Forensic Contest: Answers and Analysis
2021-03-03Brad DuncanQakbot infection with Cobalt Strike
2021-02-23Jan KoprivaQakbot in a response to Full Disclosure post
2021-01-26Brad DuncanTA551 (Shathak) Word docs push Qakbot (Qbot)
2021-01-20Brad DuncanQakbot activity resumes after holiday break
2020-12-09Brad DuncanRecent Qakbot (Qbot) activity
2020-11-03Brad DuncanEmotet -> Qakbot -> more Emotet
2020-08-19Xavier MertensExample of Word Document Delivering Qakbot
2020-04-01Brad DuncanQakbot malspam sent from an infected Windows host
2019-03-13Brad DuncanMalspam pushes Emotet with Qakbot as the follow-up malware