Handler on Duty: Didier Stevens
Threat Level: green
| Date | Author | Title |
|---|---|---|
| 2025-05-19 | Xavier Mertens | RAT Dropped By Two Layers of AutoIT Code |
| 2023-01-06 | Xavier Mertens | AutoIT Remains Popular in the Malware Landscape |
| 2023-01-05 | Brad Duncan | More Brazil malspam pushing Astaroth (Guildma) in January 2023 |
| 2020-04-20 | Didier Stevens | KPOT AutoIt Script: Analysis |
| 2020-03-23 | Didier Stevens | KPOT Deployed via AutoIt Script |
| 2019-05-01 | Xavier Mertens | Another Day, Another Suspicious UDF File |
| 2018-10-23 | Xavier Mertens | Diving into Malicious AutoIT Code |
| 2018-10-22 | Xavier Mertens | Malicious Powershell using a Decoy Picture |
| 2018-08-21 | Xavier Mertens | Malicious DLL Loaded Through AutoIT |
| 2017-09-02 | Xavier Mertens | AutoIT based malware back in the wild |
| 2017-08-25 | Xavier Mertens | Malicious AutoIT script delivered in a self-extracting RAR file |
