Hackers Hide Malware in Images to Deploy VIP Keylogger and 0bj3ctivity Stealer
(thehackernews.com)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 16 Jan 12:51
https://sh.itjust.works/post/31185247
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 16 Jan 12:51
https://sh.itjust.works/post/31185247
In both campaigns, attackers hid malicious code in images they uploaded to archive[.]org, a file-hosting website, and used the same .NET loader to install their final payloads
threaded - newest
Wait … what … another Windows vulnerability … Oh No!
Anyway
And it’s not the image that’s the attack vector, it’s still a vbscript in an excel document that download the image as its malware payload, decodes the malware and executes it.