Recent #stegocampaign delivering #XWorm RAT #malware
#VBS -> #PowerShell -> #stego picture with executable -> TXT -> #xwormrat
Payloads at #Pastebin and #Firebase
My new analysis + #IOC: https://malwarelab.eu/posts/stego-xworm/
#steganography #anyrun #malwareanalysis #obfuscation #cyberchef
