I decided to re-visit the Emotet analysis after receiving some indications that the infection had made its way to my labs Domain Controller.
Emotet Makes Its Way to the Domain Controller
Emotet Analysis – The Revival
Emotet VBA Analysis
Analysis of malicious VBA code from Emotet Maldoc containing PowerShell downloader.
Emotet Malware PowerShell Obfuscation & Evasion Review
Review of recent Emotet Maldoc obfuscation & evasion techniques
Emotet Malware Delivery Botnet
The Emotet Malware Delivery Botnet is utilizing a combination of obfuscated VBA scripts, macros, and powershell instructions to evade antivirus defenses while relying on social engineering in order to successfully exploit target systems as user intervention is mandatory in the