Source |
Security Affairs |
Identifiant |
4105682 |
Date de publication |
2022-02-10 13:50:17 (vue: 2022-02-10 14:05:13) |
Titre |
Attackers Increasingly Adopting Regsvr32 Utility Execution Via Office Documents |
Texte |
The Uptycs threat research team has been observing an increase in utilization of regsvr32.exe heavily via various types of Microsoft Office documents. The full report that includes Indicators of Compromise (IOCs) is available here: https://www.uptycs.com/blog/attackers-increasingly-adopting-regsvr32-utility-execution-via-office-documents During our analysis of these malware samples, we have identified that some of the malware samples belonged to Qbot and […]
|
Envoyé |
Oui |
Condensat |
adopting analysis attackers available been belonged com/blog/attackers compromise documents during exe execution full has have heavily here: https://www identified includes increase increasingly indicators iocs malware microsoft observing office qbot regsvr32 report research samples some team these threat types uptycs utility utilization various |
Tags |
Malware
Threat
|
Stories |
|
Notes |
★★★★★
|
Move |
|