๐งฌ Malware Analysis with VISION-ProcMon
ยท 4 min read
Malware analysis is very useful when performing a digital investigation. Indeed, identifying how a malware works and determining its behavior is very useful to detect future attacks, other compromised equipment, make critical choices and discover new TTPs. In this blog article, we will dive into the behavioral analysis of the latest QBOT campaign using malicious OneNote documents as an initial vector to compromise a host and deploy stealers. This article will demonstrate a use case of VISION-ProcMon for behavioral analysis.
Note: This blog post is not a complete analysis of the sample but simply demonstrate the capabilities of the tool.