A new malicious QBot campaign was recently discovered spreading on Windows
devices through PDF and Windows Script Files. The former banking Trojan is
notorious for facilitating initial access to compromised networks for threat
actors.
devices through PDF and Windows Script Files. The former banking Trojan is
notorious for facilitating initial access to compromised networks for threat
actors.
Perpetrators are historically known to use QBot to deploy additional malware,
such as Cobalt Strike beacons
[https://www.bitdefender.com/blog/hotforsecurity/emotet-deploys-cobalt-strike-beacons-directly-onto-targets-with-new-technique/]
and backdoors, to move lat