Malicious Powerpoint files vs Adaptive Defense

Tiara Productions
Jun 11, 2017
1 min read

Recently, security researchers found a sample of a malware that does not require a user to "Click" but just mouse over on a malicous code to execute. Well, I found it funny as you still need to download the file, run it, and move your mouse to execute the file. This is the Powerpoint file saved as "ppsx" which is a presentation file that does not require user to press F5 to run in presentation mode. User still needs to Allow the external program to execute from within the powerpoint presentation file.

However, products like Adaptive Defense is able to protect users against this type of attack even if the user accidentally allowed the external program to run.

See the video Panda Adaptive Defense against these malicious Powerpoint files.

As you can see, there is nothing special about this type of malware and it does requires user to allow the external program to be executed.

#maliciouspowerpoint #filelessattack #adaptivedefense360 #pandasecurity #powershellexploit #hovermousemalware #ppsxmalware

Carbon Black, bypassed and C# Keylogger Deployed Successfully.

Bypass SentinelOne with Metasploit and Deploy C# Keylogger

Annabelle Ransomware bypassing SentinelOne in Full Protection Mode

Malicious Powerpoint files vs Adaptive Defense

Comments