MTR Casebook: The Ransomware Hunt that Unearthed a Historic Banking Trojan

MTR Casebook: The Ransomware Hunt that Unearthed a Historic Banking Trojan -TechProspect MTR Casebook: The Ransomware Hunt that Unearthed a Historic Banking Trojan -TechProspect

This case started with an email from a brand-new MTR customer. The customer had just heard that a third-party vendor they work with had been hit by ransomware and was worried they might also be affected. The MTR team immediately picked up their request, opened a new case, and initiated a threat hunt. Within 15 minutes they were highly confident that there was no ransomware in the customer’s environment. But the team did find something suspicious. Very recently, a script had been detected and blocked by the customer’s Sophos endpoint protection software. What was odd was that it was in JavaScript which is typically used by websites to make them interactive. However, this detection wasn’t coming from a web browser – it was coming from the command line. And it was obfuscated: someone didn’t want it to be read by human eyes.

To learn more please download this whitepaper.

To Download Please Provide the Following

Must Read