The Squirrelwaffle Incident Guide

Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.


Squirrelwaffle is a malicious dropper or loader used to deliver other malware onto target systems. This guide shows Security Operations Centers (SOCs) and Incident Response Teams how to detect and respond to the presence of Squirrelwaffle on the network

https://news.sophos.com/en-us/2022/02/15/rapid-response-the-squirrelwaffle-incident-guide/

Hi everyone, the above link is a new type of article the Sophos Rapid Response team is going to start producing, think of them as threat hunting and investigation guides for different types of threat. Please let us know if these are useful and if you have any requests for new articles let us know in the replies.

Thanks, Stay Safe.



Updated disclaimer
[edited by: Qoosh at 9:44 PM (GMT -7) on 31 Mar 2023]