A Truly Graceful Wipe Out - Public Case #21619
A Truly Graceful Wipe Out - Public Case #21619
Difficulty:
Easy
Couldn't load pickup availability
This case is based on the public report A Truly Graceful Wipe Out. You will investigate a domain-wide compromise that included multiple phases of the intrusion, starting with a Truebot malware infection.
To read more about DFIR Labs click here.
This lab is based on a Private Threat Brief and includes a multi-day intrusion that starts with a phishing vector for the initial access via malware and Remote Access Tools.
To read more about DFIR Labs click here.
Important: Choose the Correct License Type
Personal License
For individuals paying out of their own pocket for personal skill development only.
- Self-funded learning
- Personal skill improvement
- No organizational benefit
Enterprise License
Required if any organization benefits from your use, including:
- Company-sponsored training
- Skills used for work purposes
- Educational institutions
- Team learning activities
Important: If your employer is paying for this lab OR if the skills learned will benefit your employer/organization in any way, you must purchase an Enterprise license. This applies even if you're paying personally but using the skills for work.
You will receive an email within 5 minutes of purchase with instructions on how to activate the lab. Buy now, use anytime within the next 3 months. Enjoy!
Disclaimer
All information in the DFIR Labs and analysis of that information shall be treated as TLP:RED. This classification mandates that the information is not shared publicly or privately without explicit permission from The DFIR Report.
The difficulty of each DFIR Lab case is inherently subjective and may vary based on the participant's individual skills and experience.
