Why Emotet’s Latest Wave is Harder to Catch than Ever Before


We reveal novel evasion techniques which assist the new wave of Emotet to avoid detection.

After five months of inactivity, the prolific and well-known Emotet botnet re-emerged on July 17th. The purpose of this botnet is to steal sensitive information from victims or provide an installation base for additional malware such as TrickBot, which then in many cases will drop ransomware or other malware. So far, in the current wave, it was observed delivering QakBot.