Common Information
| Type | Value |
|---|---|
| Value |
at.exe |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-04-24 | 180 | [QuickNote] Qakbot 5.0 – Decrypt strings and configuration | ||
| Details | Website | 2023-03-16 | 7 | Leveraging Behavioral Analysis to Catch Living-Off-the-Land Attacks | ||
| Details | 2023-01-31 | 80 | DFPS_FOR508_v4.10_02-23.indd | |||
| Details | Website | 2023-01-27 | 15 | Lessons learned from 2022 | ||
| Details | Website | 2022-09-13 | 1 | What is Ransomware Detection? How to Detect Ransomware - SOC Prime | ||
| Details | 2022-06-23 | 545 | Common TTPs of modern ransomware groups | |||
| Details | Website | 2022-06-21 | 39 | Advanced Windows TaskScheduler Playbook | ||
| Details | Website | 2022-06-07 | 7 | Defense Evasion and Phishing Emails - Red Canary | ||
| Details | 2021-11-12 | 70 | The Prelude to Ransomware: A Look into Current QAKBOT Capabilities and Global Activities | |||
| Details | Website | 2021-07-07 | 48 | GitHub - nsacyber/Mitigating-Web-Shells: Guidance for mitigation web shells. #nsacyber | ||
| Details | 2021-07-01 | 13 | Attacks Against Critical Infrastructure (White Paper) | |||
| Details | Website | 2021-05-11 | 26 | Quick analysis note about DealPly (Adware) | ||
| Details | Website | 2021-03-18 | 243 | [RE021] Qakbot analysis – Dangerous malware has been around for more than a decade | ||
| Details | Website | 2021-02-26 | 438 | Threat Roundup for February 19 to February 26 | ||
| Details | Website | 2020-06-22 | 557 | Hijacking DLLs in Windows | ||
| Details | 2020-04-21 | 127 | Cybersecurity Information Detect and Prevent Web Shell Malware | |||
| Details | Website | 2019-03-04 | 7 | APT40 | Examining a China-Nexus Espionage Actor | Mandiant | ||
| Details | 2019-02-06 | 169 | APT10 Targeted Norwegian MSP and US Companies in Sustained Campaign | |||
| Details | Website | 2018-05-09 | 3 | No Win32_Process Needed – Expanding the WMI Lateral Movement Arsenal | ||
| Details | Website | 2017-02-28 | 20 | Log - Sysmon 6 Windows Event Collection | ||
| Details | Website | 2015-08-05 | 228 | Threat Group-3390 Targets Organizations for Cyberespionage | ||
| Details | 2015-07-08 | 341 | Word Template | |||
| Details | Website | 2014-09-04 | 14 | What Does That Look Like, Pt II | ||
| Details | Website | 2013-07-10 | 11 | HowTo: Track Lateral Movement | ||
| Details | Website | 2013-07-06 | 31 | HowTo: Determine Program Execution |