all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

HTML Smuggling Leads to Domain Wide Ransomware

Add to bookmarks
Aug. 28, 2023, 3:18 p.m. | /u/TheDFIRReport

Computer Forensics www.reddit.com

In this case a threat actor delivered a password protected ZIP file via HTML smuggling. Within the password protected ZIP file, there was an ISO file that deployed IcedID which led to the use of Cobalt Strike. Nokoyawa ransomware was deployed domain wide within 12 hours of initial access.

Report: [https://thedfirreport.com/2023/08/28/html-smuggling-leads-to-domain-wide-ransomware/](https://thedfirreport.com/2023/08/28/html-smuggling-leads-to-domain-wide-ransomware/)

access actor case cobalt cobalt strike computerforensics domain file html html smuggling icedid initial access iso led nokoyawa nokoyawa ransomware password ransomware smuggling strike threat threat actor zip

Visit resource

More from www.reddit.com / Computer Forensics

Which is the fastest tool ? 11 hours ago | www.reddit.com
autopsy axiom can computerforensics +10
Publicly-Accessible Disk Images and Mobile Extractions Grid for DFIR 1 day, 15 hours ago | www.reddit.com
android artifacts computerforensics disk +7
BIRT Incident Response & Triage Beta update 2 days, 16 hours ago | www.reddit.com
application asking beta blog +15
What do I need for a career in computer forensics if I’m currently doing my … 3 days, 16 hours ago | www.reddit.com
career computer computer forensics computerforensics +3
GCFA 2024 5 days, 12 hours ago | www.reddit.com
advice computerforensics digest gcfa +6
FOR577: LINUX Incident Response and Threat Hunting 6 days, 12 hours ago | www.reddit.com
computerforensics thanks
How to input the NSRL database into Axiom? 1 week, 1 day ago | www.reddit.com
axiom can computerforensics database +6
This case has been posted on here several times. This is the defense hitting on … 1 week, 3 days ago | www.reddit.com
case computerforensics defense experts +1
Google account sign out for "suspicious activity" 1 week, 4 days ago | www.reddit.com
account can computerforensics device +8

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com