A Blog about malware and file formats

All articles for category: lnk
LNK forensic and config extraction of a cobalt strike beacon

LNK forensic and config extraction of a cobalt strike beacon

Thu 11 August 2022
Windows shortcut files can contain valuable data. We will see how to extract the most information out of a .lnk downloader and will manually extract the configuration file of the final cobalt strike beacon using malcat
Read more →