Nov. 16, 2023, 5:22 a.m. | Eswar

GBHackers On Security gbhackers.com

Researchers have discovered a new phishing campaign that targets Middle Eastern and North African Government Entities to deliver a new initial access downloader termed “IronWind.” This downloader is followed by additional payload stages, which downloads a shellcode.  Most campaigns were using Dropbox links, which then evolved to using XLL and RAR file attachments to evade […]


The post TA402 Group using Weaponized XLL and RAR Files to Deliver Malware appeared first on GBHackers on Security | #1 Globally …

access campaign campaigns computer security deliver malware downloads dropbox entities files government initial access ironwind links malware north payload phishing phishing campaign rar rar files researchers shellcode ta402 xll

Senior Sales Engineering Specialist

@ BT Group | Perth , Australia

Senior Security Operations Program Manager

@ Microsoft | Washington, DC, District of Columbia, United States

Project Manager - Défense & Sécurité – Lille

@ Sopra Steria | Villeneuve-d'Ascq, France

Sr. Software Engineer - Windows Content Research & Integration (Remote, CAN)

@ CrowdStrike | CAN NB Remote

APJ Security GTM Business Development Manager

@ ServiceNow | Singapore, Singapore

Consultant - EDR Job

@ Yash Technologies | Hyderabad, TG, IN