Common Information
| Type | Value |
|---|---|
| Value |
coreserviceshell.exe |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-10-23 | 76 | Embargo ransomware: Rock’n’Rust | ||
| Details | Website | 2024-04-24 | 180 | [QuickNote] Qakbot 5.0 – Decrypt strings and configuration | ||
| Details | Website | 2023-10-11 | 99 | Qakbot evolves to OneNote Malware Distribution | ||
| Details | Website | 2023-10-03 | 39 | Technical Analysis of HijackLoader | ||
| Details | Website | 2023-03-24 | 72 | Bypassing Qakbot Anti-Analysis | ||
| Details | Website | 2022-12-01 | 87 | From Macros to No Macros: Continuous Malware Improvements by QakBot | ||
| Details | Website | 2022-10-31 | 85 | Orion Threat Alert: Qakbot TTPs Arsenal and the Black Basta Ransomware - Cynet | ||
| Details | Website | 2022-08-31 | 634 | LUNA Ransomware Attack Pattern Analysis — Elastic Security Labs | ||
| Details | Website | 2022-02-23 | 314 | (Ex)Change of Pace: UNC2596 Observed Leveraging Vulnerabilities to Deploy Cuba Ransomware | Mandiant | ||
| Details | Website | 2021-03-18 | 243 | [RE021] Qakbot analysis – Dangerous malware has been around for more than a decade | ||
| Details | Website | 2020-12-15 | 74 | QakBot reducing its on disk artifacts - Hornetsecurity | ||
| Details | Website | 2016-10-11 | 389 | VenisRansomware - Pastebin.com | ||
| Details | 2016-02-08 | 859 | ADWIND — A CROSS-PLATFORM RAT | |||
| Details | 2015-07-08 | 341 | Word Template | |||
| Details | Website | 2013-03-14 | 38 | New Exploit Kit, Ransomware and AV evasion | Malwarebytes Labs | ||
| Details | — | 102 | Qakbot report |