ALERT WinRAR SFX archives run PowerShell undetected

wardmundy · Apr 6, 2023

WinRAR SFX archives can run PowerShell without being detected

Hackers are adding malicious functionality to WinRAR self-extracting archives that contain harmless decoy files, allowing them to plant backdoors without triggering the security agent on the target system.

www.bleepingcomputer.com

Halea · Apr 6, 2023

HackerNews also had an article about SFX yesterday.

ALERT WinRAR SFX archives run PowerShell undetected

wardmundy

Nerd Uno

WinRAR SFX archives can run PowerShell without being detected

Halea

Well-Known Member

Members online

Latest Posts

Forum statistics