#weaponizeddoc search results

Absolutley NOT psychological. 😡 Worldwide #coverup by using #psyops on severely injured citizens, utilizing gaslighting & suggestablitiy on the most vulnerable women. Countless, women told it's in "their heads" probably same blokes who still standby hysteria. #WeaponizedDoc

CB ThreatSight discovered a #phishing campaign targeting customers via a #WeaponizedDoc. The doc invokes PowerShell w/ obfuscated code to establish netconns & attempts to drop & execute a 2nd stage payload such as #Ursnif ow.ly/CZZN50viwBx @ThreatHuntress @rayrayssi @Jpeg42

CarbonBlack_Inc : CB ThreatSight recently discovered a widespread #phishing campaign targeting customers via a #WeaponizedDoc which invokes PowerShell w/ obfuscated code to establish netconns and attempts to drop and execute a 2nd stage payload, often th…

CB ThreatSight recently discovered a widespread #phishing campaign targeting customers via a #WeaponizedDoc which invokes PowerShell w/ obfuscated code to establish netconns and attempts to drop and execute a 2nd stage payload, often the #polymorphic banking trojan #Emotet

CarbonBlack_Inc : Cb #ThreatSight has investigated a wide #phishing campaign targeting customers via a #WeaponizedDoc - invokes #CMD and #PowerShell w/ obfuscated code, establishes net conns, attempts to drop/execute a 2nd stg payload - …

Cb #ThreatSight has investigated a wide #phishing campaign targeting customers via a #WeaponizedDoc - invokes #CMD and #PowerShell w/ obfuscated code, establishes net conns, attempts to drop/execute a 2nd stg payload - ow.ly/jXdZ30lBCK7 #infosec @joshpatesec @ThreatHuntress

So Regsvr32 can be used to fetch a file from a URL? wtf.... #WeaponizedDoc @Invincea Kills It. Your AV won't.

Customer gets pounded for no damage by #WeaponizedDoc that powershells to pseudodarkleech p0wnt site. #Cerber? virustotal.com/en/file/aa2583…

HR Manager puts resumes into folders for open sales positions. SURPRISE! This one is Hancitor #WeaponizedDoc No damage done cuz @Invincea

#WeaponizedDoc drops H1N1/Pony by creating 11 cab files. Win95 shipped on 13 cabs. virustotal.com/en/file/93f71c…

Some victims are able to dodge a #WeaponizedDoc and its payload due to a fatal error. Good ol' Dr. Watson.

Tracking this MemSys #WeaponizedDoc campaign for a while. Uses local DotNet to steal passwords and email contacts.

This #TorrentLocker #WeaponizedDoc can't Randomnum. Dont matter. Your users will open anyways.

Not a single AV will stop this new #Cerber #WeaponizedDoc @Invincea kills it. virustotal.com/en/file/671119…

Hey @malwrhunterteam this #WeaponizedDoc dropped Orcus Ozone Vypr VPN. #RAT Fake Tax Doc Phish @Invincea killed it

This #WeaponizedDoc attack- Spreadsheet embedded inside word doc or two attachments? Looks new to me.

This #Locky spammer spent July 4th Fat Fingering his #WeaponizedDoc names. Its (RANDNUM) Your users open it anyways.

This #WeaponizedDoc powershells down a zip file; extracts it. #InvinceaKilledIt

This Pony #WeaponizedDoc #Phishing run beacons to Russia.

A #WeaponizedDoc uses bitsadmin to download malware named with a political message about the Jews.

This Pony #WeaponizedDoc #Phishing run beacons to Russia.

CB ThreatSight discovered a #phishing campaign targeting customers via a #WeaponizedDoc. The doc invokes PowerShell w/ obfuscated code to establish netconns & attempts to drop & execute a 2nd stage payload such as #Ursnif ow.ly/CZZN50viwBx @ThreatHuntress @rayrayssi @Jpeg42

Cb #ThreatSight has investigated a wide #phishing campaign targeting customers via a #WeaponizedDoc - invokes #CMD and #PowerShell w/ obfuscated code, establishes net conns, attempts to drop/execute a 2nd stg payload - ow.ly/jXdZ30lBCK7 #infosec @joshpatesec @ThreatHuntress

This #WeaponizedDoc powershells down a zip file; extracts it. #InvinceaKilledIt

This #TorrentLocker #WeaponizedDoc can't Randomnum. Dont matter. Your users will open anyways.

So Regsvr32 can be used to fetch a file from a URL? wtf.... #WeaponizedDoc @Invincea Kills It. Your AV won't.

Not a single AV will stop this new #Cerber #WeaponizedDoc @Invincea kills it. virustotal.com/en/file/671119…

CB ThreatSight recently discovered a widespread #phishing campaign targeting customers via a #WeaponizedDoc which invokes PowerShell w/ obfuscated code to establish netconns and attempts to drop and execute a 2nd stage payload, often the #polymorphic banking trojan #Emotet

#WeaponizedDoc drops H1N1/Pony by creating 11 cab files. Win95 shipped on 13 cabs. virustotal.com/en/file/93f71c…

This #WeaponizedDoc is titled "Mission Statement" Spoilers: Mission is to Pwn you!

#WeaponizedDoc uses bitsadmin to download #cerber Put it on VT here: virustotal.com/en/file/d59bc6…

This #WeaponizedDoc uses a reservation, not an invoice for lure. 40k+ TCP connections! virustotal.com/en/file/e5fbfd…

Some victims are able to dodge a #WeaponizedDoc and its payload due to a fatal error. Good ol' Dr. Watson.

CarbonBlack_Inc : CB ThreatSight recently discovered a widespread #phishing campaign targeting customers via a #WeaponizedDoc which invokes PowerShell w/ obfuscated code to establish netconns and attempts to drop and execute a 2nd stage payload, often th…

A #WeaponizedDoc uses bitsadmin to download malware named with a political message about the Jews.

Latest H1N1 #WeaponizedDoc dropper has strings of "talking corrosive fledgling LILO.

This #Locky spammer spent July 4th Fat Fingering his #WeaponizedDoc names. Its (RANDNUM) Your users open it anyways.

HR Policies Update #WeaponizedDoc drops #Locky #Ransomware Your workforce will open it. Think your AV will save you?

Tracking this MemSys #WeaponizedDoc campaign for a while. Uses local DotNet to steal passwords and email contacts.

CarbonBlack_Inc : Cb #ThreatSight has investigated a wide #phishing campaign targeting customers via a #WeaponizedDoc - invokes #CMD and #PowerShell w/ obfuscated code, establishes net conns, attempts to drop/execute a 2nd stg payload - …