Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
New alleged MuddyWater attack downloads a PowerShell script from GitHub
Threat Actors
January 04, 2021
Security Affairs
This PowerShell script is also used by threat actors to download a legitimate image file from image hosting service Imgur and decode an embedded Cobalt Strike script to target Windows systems.
Read More
PowerShell
GitHub
Word documents
Steganography
Macro
Publisher
Previous
SolarWinds mess flared in the holidays - company confir ...
Incident Response, Learnings
Next
A closer look at fileless malware, beyond the network
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/d6a0_shutterstock_1595037637.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/a5fb_shutterstock_1718407564.jpg)
