#VBS -> #PowerShell -> #stego picture with executable -> TXT -> #xwormrat
Payloads at #Pastebin and #Firebase
My new analysis + #IOC: https://malwarelab.eu/posts/stego-xworm/
#steganography #anyrun #malwareanalysis #obfuscation #cyberchef
MalwareLab on Nostr: Recent #stegocampaign delivering #XWorm RAT #malware #VBS -> #PowerShell -> #stego ...
Recent #stegocampaign delivering #XWorm RAT #malware
#VBS -> #PowerShell -> #stego picture with executable -> TXT -> #xwormrat
Payloads at #Pastebin and #Firebase
My new analysis + #IOC: https://malwarelab.eu/posts/stego-xworm/
#steganography #anyrun #malwareanalysis #obfuscation #cyberchef
#VBS -> #PowerShell -> #stego picture with executable -> TXT -> #xwormrat
Payloads at #Pastebin and #Firebase
My new analysis + #IOC: https://malwarelab.eu/posts/stego-xworm/
#steganography #anyrun #malwareanalysis #obfuscation #cyberchef