SEARCH
Archive
Emotet Office Macros Abuse Continues Despite Microsoft Protections
Researchers found hundreds of malicious Office documents being used to download Emotet in June.
Emotet ‘Test’ Campaign Leverages OneDrive, XLL Files
A recent Emotet campaign with significant TTP changes reveal that attackers may be moving away from macros-based attacks given Microsoft’s recent plans to block VBA macros by default.
Emotet Spam Attacks Use Hexadecimal, Octal IP Addresses
The known tactic, which helps attackers sidestep detection, has been observed in spam messages that deploy Emotet.
Decipher Podcast: Sherrod DeGrippo
Proofpoint's Sherrod DeGrippo discusses the top malware trends of the past year, including Emotet's takedown and eventual return.
Emotet Shifts Gears, Drops Cobalt Strike Directly
New versions of Emotet have been dropping Cobalt Strike beacons directly, rather than relying on intermediate payloads such as Trickbot.