Qbot Leads to Domain Compromise - Private Case #27101

This case is based on a Private Threat Brief. You'll get to investigate a domain-wide compromise involving a multi-day intrusion that started with a Qbot infection.

To read more about DFIR Labs click here.

Your access time starts at purchase time. You will receive an email within 5 minutes of purchase with instructions on how to connect to the lab. Enjoy!

Disclaimer

All information in the DFIR Labs and analysis of that information shall be treated as TLP:RED. This classification mandates that the information is not shared publicly or privately without explicit permission from The DFIR Report.

The difficulty of each DFIR Lab case is inherently subjective and may vary based on the participant’s individual skills and experience.