Emotet now drops Cobalt Strike, fast forwards ransomware attacks
Lawrence Abrams reports:
In a concerning development, the notorious Emotet malware now installs Cobalt Strike beacons directly, giving immediate network access to threat actors and making ransomware attacks imminent.[…]
Today, Emotet research group Cryptolaemus warned that Emotet is now skipping their primary malware payload of TrickBot or Qbot and directly installing Cobalt Strike beacons on infected devices.
Read more on BleepingComputer.