101@feddit.org to Technology@lemmy.worldEnglish · 21 days agoBe careful.feddit.orgimagemessage-square178fedilinkarrow-up11.64Karrow-down115file-text
arrow-up11.63Karrow-down1imageBe careful.feddit.org101@feddit.org to Technology@lemmy.worldEnglish · 21 days agomessage-square178fedilinkfile-text
minus-squarex00za@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up36·20 days agoAnybody got more info on the actual payload? powershell.exe -eC [payload_w_base64] is mentioned here. -eC just means encoded command afaik.
minus-squarepurplemonkeymad@programming.devlinkfedilinkEnglisharrow-up6·20 days agoSeen this on the powershell subreddit before, it just downloads and runs another executable.
minus-squarelooeee@lemmy.worldlinkfedilinkEnglisharrow-up5·20 days agoDeep analysis here https://denwp.com/anatomy-of-a-lumma-stealer
minus-squarex00za@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up3·20 days agoThanks for sharing. I also added that website to my RSS reader.
Anybody got more info on the actual payload?
powershell.exe -eC [payload_w_base64]
is mentioned here.-eC
just means encoded command afaik.Seen this on the powershell subreddit before, it just downloads and runs another executable.
Deep analysis here https://denwp.com/anatomy-of-a-lumma-stealer
Thanks for sharing.
I also added that website to my RSS reader.
Same