Unveiling the New Developments in Qakbot Malware

Fresh samples of Qakbot malware have been circulating in email campaigns since mid-December, indicating ongoing experimentation by its developers. One variant uses a fake Adobe product installer to deceive users into installing the malware on Windows systems.

Qakbot, also known as QBot, has long been used to deliver various malicious payloads, including ransomware, primarily through email. Despite a takedown operation last August, which didn’t lead to any arrests, security experts predicted a resurgence of Qakbot activities. Indeed, Cisco Talos reported an active Qakbot campaign in October, suggesting that only the command and control servers were disrupted, not the spam delivery infrastructure.

PC Matic is a 100% USA-based cybersecurity solution, providing industry-leading security that is affordable and easy to manage for everyone. PC Matic prevents cybercriminals from running malware or ransomware on your Windows, macOS, iOS, and Android devices.

Additionally, users enjoy the advantages of a VPN for online freedom, premium identity theft protection, bank and credit monitoring, dark web monitoring, and 100% USA-based phone support.

The new QBot variants feature incremental build number changes, indicating ongoing testing and refinement by the developers. Unlike previous versions, recent samples use Microsoft Software Installer (.MSI) executables that drop DLL binaries from a Windows Cabinet archive.

Furthermore, the malware displays a fake Adobe Setup popup to trick users into launching the malicious payload. Experts stress the importance of vigilance, as any effort by threat actors to revive Qakbot warrants close surveillance and scrutiny.


PC Matic delivers complete home and business cybersecurity protection against ransomware, malware, identity theft, online tracking, data breaches, and more. For over 20 years, PC Matic’s award-winning cyber protection has saved millions of satisfied customers from becoming the next cybercrime victim and is exclusively made in the USA.
Learn more about PC Matic today!
pcmatic.com
[email protected]

Stop Responding to Threats.
Prevent Them.

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles