National Cyber Warfare Foundation (NCWF)

Hackers Use Weaponized .HTA Files to Infect Victims with Red Ransomware
0 user ratings		2025-07-25 15:57:32
milo
Red Team (CNA)

CloudSEK’s TRIAD team uncovered an active development site deploying Clickfix-themed malware linked to the Epsilon Red ransomware. This variant deviates from traditional clipboard-based command injection tactics by directing victims to a secondary page on the same domain, where malicious shell commands are executed silently through ActiveXObject(“WScript.Shell”) to facilitate payload delivery. The script leverages Windows Command […]


The post Hackers Use Weaponized .HTA Files to Infect Victims with Red Ransomware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/hackers-use-weaponized-hta-files-to-infect-victims/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.