New GitHub based malware uses Word files and Imgur images to decode a Cobalt Strike script

A new type of malware using Word files with macros to download a PowerShell script from GitHub, has been discovered recently. The PowerShell script then downloads an Imgur image file to decode a Cobalt Strike script on Windows systems. According to researchers, this malware strains is linked to MuddyWater, the government-based hacking group, known to target Middle East countries. Read more...
Posted on by Mash

Read More

Got Something To Say?

Your email address will not be published.