Phishing attack uses Word macros to propagate malware infection

This attack relies on social engineering, as it attempts to convince the user that macros must be enabled to properly view the document, which appears blurred when it’s opened. Once the user does so, a sequence of events is set in motion. A batch script runs and executes a Visual Basic script that in turn runs a PowerShell script and that downloads the malware, which appears to be a trojan that can log keystrokes and copy the contents of the clipboard.

Find out more here:

http://www.scmagazine.com/phishing-email-contains-word-doc-enabling-macros-leads-to-malware-infection/article/388936/

Leave a Comment

Your email address will not be published.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top