Source |
Bleeping Computer |
Identifiant |
2132116 |
Date de publication |
2020-12-28 06:57:33 (vue: 2020-12-28 15:06:10) |
Titre |
GitHub-hosted malware calculates Cobalt Strike payload from Imgur pic (Recyclage) |
Texte |
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script. [...] |
Envoyé |
Oui |
Condensat |
calculates cobalt decode a download downloads file files from further github hosted hosting image imgur legitimate macros malware new payload pic powershell script service strand strike uses word |
Tags |
Malware
|
Stories |
|
Notes |
|
Move |
|
Source |
Bleeping Computer |
Identifiant |
2131753 |
Date de publication |
2020-12-28 06:57:33 (vue: 2020-12-28 12:05:59) |
Titre |
GitHub-based malware calculates Cobalt Strike payload from Imgur pic (Recyclage) |
Texte |
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script. [...] |
Envoyé |
Oui |
Condensat |
based calculates cobalt decode a download downloads file files from further github hosting image imgur legitimate macros malware new payload pic powershell script service strand strike uses word |
Tags |
Malware
|
Stories |
|
Notes |
|
Move |
|
Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-12-28 06:57:33 |
(Déjà vu) GitHub-based malware calculates Cobalt Strike payload from Imgur pic (lien direct) |
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script. [...] |
Malware
|
|
|