Dark Reading

Shadow#Reactor Uses Text Files to Deliver Remcos RAT

Attackers use a sophisticated delivery mechanism for RAT deployment, a clever way to bypass defensive tools and rely on the ...
The Hacker News

New Malware Campaign Delivers Remcos RAT Through Multi-Stage Windows Attack

SHADOW#REACTOR is a malware campaign using VBS, PowerShell, and MSBuild to stealthily deploy Remcos RAT with persistent ...
GitHub

A collection of PowerShell scripts to download images/videos from various websites.

1. DownloadAllMetadataAndFiles (Download metadata from users/queries to database and then download files) 2. DownloadAllMetadata (Download only metadata from users/queries to database) 3.
Bleeping Computer

Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell scripts that infect Windows systems with the 'Cosmali Loader'.
GitHub

PowerShell Scripts for VMware Cloud Foundation Depot Management

A collection of PowerShell scripts to help manage and configure VMware depot repositories for VMware Cloud Foundation (VCF) and vCenter Server environments. This repository contains utilities for ...