![]() ![]() ![]() ![]() The use of InPage as an attack vector is not commonly seen, with the only previously noted attacks being documented by Kaspersky in late 2016. A previously unknown backdoor that we have named MY24.A backdoor previously not discussed in the public domain, commonly detected by some antivirus solutions as “BioData”.The previously discussed CONFUCIUS_B malware family.The documents were found to drop the following malware families: The three InPage exploit files are linked through their use of very similar shellcode, which suggests that either the same actor is behind these attacks, or the attackers have access to a shared builder. InPage is a word processor program that supports languages such as Urdu, Persian, Pashto, and Arabic. In recent weeks, Unit 42 has discovered three documents crafted to exploit the InPage program.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |