#Yara

Proof of Concept: #Malware Delivery via #appx/#msix packages. In our test case we needed administrative permissions to install the package with putty.exe as our test payload. Thre...

SECUINFRA FALCON TEAM

@SI_FalconTeam

Some very interesting XLLs in the wild (#blueteam take note!). Will link to some research in this thread. This one loads a payload from an embedded resource and displays a decoy m...

John Lambert

@JohnLaTwC