SANS Internet Storm Center, InfoCON: green


Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)

2020-04-18 21:04

Read the original article: 
Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)

Another piece of malicious PowerShell script that I found while hunting. Like many malicious activities that occur in those days, it is related to the COVID19 pandemic.&#x26;#xc2;&#x26;#xa0;Its purpose of simple: It checks if Outlook is used by the victim and, if it&#x26;#39;s the case, it generates a malicious RTF document that is spread to all contacts extracted from Outlook. Let&#x26;#39;s have a look at it. The script is available on VT (SHA256: 1f7f0d75fe5dace66ec9b5935d28ba02765527f09f58345c2e33e17ab4c91bd7) and has a low score of 8/60[1].

Advertise on IT Security News.

Read the original article: 
Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)

← Maldoc Falsely Represented as DOCX Invoice Redirecting to Fake Apple Store, (Sat, Apr 18th)

BSidesSF 2020 – Hon Kwok’s ‘Secure By Design: Usable Security Tooling’ →


10.4K	8K	100+	500+

Read the original article: &#xa;Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)

Read the original article: &#xa;Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)

Related

Post navigation

Discover more from IT Security News

Read the original article:
Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)

Read the original article:
Weaponized RTF Document Generator & Mailer in PowerShell, (Fri, Apr 17th)