SVG Phishing Malware Being Distributed with Analysis Obstruction Feature
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
A sophisticated phishing malware using Scalable Vector Graphics (SVG) format has been identified. The malware embeds malicious scripts within SVG files, using Base64 encoding to bypass detection. It employs various techniques to obstruct analysis, including blocking automation tools, preventing specific keyboard shortcuts, disabling right-clicks, and detecting debugging attempts. The malware redirects users to a fake CAPTCHA page, which, when interacted with, leads to further malicious actions, potentially a phishing site impersonating Microsoft login pages. This evolving threat highlights the need for increased user vigilance, especially when dealing with SVG files from unknown sources.
OPENCTI LABELS :
phishing,base64,xml,captcha,svg,microsoft impersonation,analysis obstruction,svg phishing malware,vector graphics
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
SVG Phishing Malware Being Distributed with Analysis Obstruction Feature