I recently ran a Trickbot sample and the attackers went from Trickbot to Ryuk ransomware in just over two hours. The attackers ran Cobalt Strike within 30 minutes and confirmed hands on activity on a Domain Controller within 60 minutes. This blog post covers a TLDR, Timeline, Summary and IOCs.

In Network Security by RandomRaineLeave a Comment

submitted by /u/InfoSecJim
[link] [comments]
Source: Net Sec

Leave a Comment