Qakbot – TheCyberThrone

Microsoft Zeroday Bug CVE-2024-30051 exploited to install QakBot

Microsoft has addressed a critical zero-day vulnerability during this moth patch Tuesday release. The vulnerability tracked as CVE-2024-30051 with a CVS score of 7.8, that was actively exploited by attackers…

PravinKarthik May 15, 2024

Operation Duck Hunt – Qakbot Infra Disrupted

A multinational action called Operation “Duck Hunt” — led by the FBI, the DoJ, the National Cybersecurity Alliance, Europol, and crime officials in France, Germany, the Netherlands, Romania, Latvia and…

PravinKarthik August 31, 2023

Most Prevailed Malware Families a Review – Year 2022

Malware describes any malicious program created to wreak havoc or mischief on a computer system. Thanks to the constant push-and-pull between security professionals and cybercriminals, it’s also an ever-evolving ecosystem.…

PravinKarthik December 21, 2022

QakBot tied with Black Basta Ransomware

Black Basta ransomware group has been reportedly spotted using QakBot malware to create a entry and move laterally within organizations’ networks. QakBot, traditionally a banking trojan primarily used to steal…

PravinKarthik November 24, 2022

Squirrel waffle Drops CobaltStrike

A new malware dubbed Squirrelwaffle has emerged, supporting actors with an initial foothold and a way to drop malware onto compromised systems and network, spreads via spam campaigns dropping Qakbot…

PravinKarthik October 27, 2021

Qakbot deep Insight

Kaspersky has released the technical analysis report detailing of the decade old Qakbot trojan’s infection chain, typical functions, communication with C2. QakBot is mostly known for targeting its victims via spam.…

PravinKarthik September 6, 2021

Qakbot 🐎 ->Prolock ☠️-> Egregor 👹

Group-IB discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware. ProLock = Egregor The analysis of attacks where Egregor has been deployed revealed that the TTPs used…

PravinKarthik November 22, 2020

Prolock Ransomware 🔓 Unlocked

ProLock ransomware were able to deploy a large number of attacks over the past six months, using the standard operating tactic.vaveraging close to one target every day. Initially started in…

PravinKarthik September 10, 2020