Source |
DarkTrace |
Identifiant |
6481958 |
Date de publication |
2022-08-23 00:00:00 (vue: 2022-08-23 11:05:26) |
Titre |
Emotet Resurgence: Cross-Industry Campaign Analysis |
Texte |
This blog aims to provide background and technical discoveries from the recent Emotet resurgence detected in early 2022 across multiple Darktrace client environments in multiple regions and industries. Predominantly in March and April 2022, Darktrace DETECT provided visibility over network activities associated with Emotet compromises using initial staged payload downloads involving algorithmically generated DLLs and subsequent outbound command and control, as well as spam activities. |
Envoyé |
Oui |
Condensat |
2022 across activities aims algorithmically analysis april associated background blog campaign client command compromises control cross darktrace detect detected discoveries dlls downloads early emotet environments from generated industries industry initial involving march multiple network outbound over payload predominantly provide provided recent regions resurgence resurgence: spam staged subsequent technical using visibility well |
Tags |
Spam
|
Stories |
|
Notes |
★★★★
|
Move |
|