Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 2 Vote(s) - 3 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Hackers Using Microsoft Publisher File
#1
In The Name OF Allah
Al-Salam Alekum

[Image: FlawedAmmyy-RAT.jpg]

Quote:A new campaign using Weaponized Microsoft Publisher File(.pub) to deliver the FlawedAmmyy RAT. The FlawedAmmyy RAT is a backdoor tool that gains remote access to the attacker. Security researchers from Trustwave spotted the Email campaign subjected “Payment Advice” with Microsoft Office Publisher file attached.
Once the .pub file is opened it asks the victim’s to Enable Macros, the macro script triggers Document_Open() event which opens the file and once the file is opened it access the URL that located in the Tag Property and executes a downloaded file.
https://gbhackers.com/microsoft-publishe...y-rat/amp/

Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Update Windows 10 to patch critical vulnerability in Microsoft store games News 0 377 11-06-2020, 04:22 AM
Last Post: News
Star News Top tip, everyone: Chinese hackers are hitting these 25 vulns, so make sure you patc News 0 447 10-21-2020, 11:27 AM
Last Post: News
Star News US Warns: Hackers Chaining Zerologon, Other Vulnerabilities News 0 432 10-11-2020, 01:15 PM
Last Post: News
Star News OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks News 1 1,155 10-01-2020, 06:40 PM
Last Post: Mr.Kurd
Star News Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution - CXSecu News 0 453 09-18-2020, 08:12 AM
Last Post: News
Star News Four More Bugs Patched in Microsoft’s Azure Sphere IoT Platform News 0 458 08-26-2020, 03:41 AM
Last Post: News
Big Grin News Credit-Card Skimmer Has Unlikely Target: Microsoft ASP.NET Sites Mr.Kurd 0 521 07-08-2020, 10:13 AM
Last Post: Mr.Kurd
Exclamation News Windows SMB Protocol Bug Let Hackers Leak Kernel Memory & Execute a Code Remotely Mr.Kurd 0 730 06-12-2020, 08:24 AM
Last Post: Mr.Kurd
Exclamation News $100,000 Bounty Apple Zero-day Bug in “Sign in with Apple” Let Hackers Take Takeover Mr.Kurd 0 716 06-01-2020, 07:42 AM
Last Post: Mr.Kurd
Star News Hackers Are Bundling Cryptominer With a Seemingly Legit Zoom Installer on Unofficial Mr.Kurd 0 725 04-08-2020, 08:43 AM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)