Investigation of an email with a password-protected Excel file attached to it revealed Remcos RAT 3.x activity remarkably similar to an infection chain reported by Fortinet last month. This diary reviews a Remcos RAT infection in Brad Duncan’s lab on Wednesday 2022-05-04.
Password-protected Excel spreadsheet pushes Remcos RAT