Targeting Microsoft Users

[Mizzkizz7]

This will try to get you to update on Microsoft Word, ETC.   This product was written by the Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC).

Emotet—a sophisticated Trojan commonly functioning as a downloader or dropper of other malware—resurged in July 2020, after a dormant period that began in February. Since August, CISA and MS-ISAC have seen a significant increase in malicious cyber actors targeting state and local governments with Emotet phishing emails. This increase has rendered Emotet one of the most prevalent ongoing threats.

To secure against Emotet, CISA and MS-ISAC recommend implementing the mitigation measures described in this Alert, which include applying protocols that block suspicious attachments, using antivirus software, and blocking suspicious IPs.

Technical Details
Emotet is an advanced Trojan primarily spread via phishing email attachments and links that, once clicked, launch the payload (Phishing: Spearphishing Attachment [T1566.001], Phishing: Spearphishing Link [T1566.002]).The malware then attempts to proliferate within a network by brute forcing user credentials and writing to shared drives (Brute Force: Password Guessing [T1110.001], Valid Accounts: Local Accounts [T1078.003], Remote Services: SMB/Windows Admin Shares [T1021.002]).

Emotet is difficult to combat because of its “worm-like” features that enable network-wide infections. Additionally, Emotet uses modular Dynamic Link Libraries to continuously evolve and update its capabilities.

Since July 2020, CISA has seen increased activity involving Emotet-associated indicators. During that time, CISA’s EINSTEIN Intrusion Detection System, which protects federal, civilian executive branch networks, has detected roughly 16,000 alerts related to Emotet activity. CISA observed Emotet being executed in phases during possible targeted campaigns. Emotet used compromised Word documents (.doc) attached to phishing emails as initial insertion vectors. Possible command and control network traffic involved HTTP POST requests to Uniform Resource Identifiers consisting of nonsensical random length alphabetical directories to known Emotet-related domains or IPs with the following user agent string (Application Layer Protocol: Web Protocols [T1071.001]).

[countrygirl12]

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.

[Mizzkizz7]

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.

Thanks! Just getting the info from the internet.

[countrygirl12]

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.

Thanks! Just getting the info from the internet.

I get that.  I was asking where does it come from?  Not your info but the virus.  Like I said, most of it hurts my head. lol  Where did you get your info?  Is it something that just pops up like a lot of viruses do?  Something you click on?  Like I said, when I turned the computer on at church it done some kind of update.  Then it updated the programs you are talking about.  It just happened.  I could not stop it.  So now I am curious as to if it could have anything to do with what you mentioned.  I guess we will know Sunday when we turn it back on.  So I guess if it is messed up I will have some idea of what might have happened. 

Then when it finished the update it wanted me to set everything up again.

[mrisha]

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.


Writing all those very long paragraphs

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.

Thanks! Just getting the info from the internet.

I get that.  I was asking where does it come from?  Not your info but the virus.  Like I said, most of it hurts my head. lol  Where did you get your info?  Is it something that just pops up like a lot of viruses do?  Something you click on?  Like I said, when I turned the computer on at church it done some kind of update.  Then it updated the programs you are talking about.  It just happened.  I could not stop it.  So now I am curious as to if it could have anything to do with what you mentioned.  I guess we will know Sunday when we turn it back on.  So I guess if it is messed up I will have some idea of what might have happened. 

Then when it finished the update it wanted me to set everything up again.

Thanks! Just getting the info from the internet.

I get that.  I was asking where does it come from?  Not your info but the virus.  Like I said, most of it hurts my head. lol  Where did you get your info?  Is it something that just pops up like a lot of viruses do?  Something you click on?  Like I said, when I turned the computer on at church it done some kind of update.  Then it updated the programs you are talking about.  It just happened.  I could not stop it.  So now I am curious as to if it could have anything to do with what you mentioned.  I guess we will know Sunday when we turn it back on.  So I guess if it is messed up I will have some idea of what might have happened. 

Then when it finished the update it wanted me to set everything up again.

Why do people such long, long paragraphs?  I just ignore it.  My head hurts and then the pain behind my eye starts.  Condensed it down or just paraphrase. 

[countrygirl12]

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.


Writing all those very long paragraphs

Most of your post hurts my head.  Where does it comes from?  The computer at church done at update when I turned it on the other night.  Then it updated the Microsoft Office programs.  It just happened.  There was no way to stop it.

Thanks! Just getting the info from the internet.

I get that.  I was asking where does it come from?  Not your info but the virus.  Like I said, most of it hurts my head. lol  Where did you get your info?  Is it something that just pops up like a lot of viruses do?  Something you click on?  Like I said, when I turned the computer on at church it done some kind of update.  Then it updated the programs you are talking about.  It just happened.  I could not stop it.  So now I am curious as to if it could have anything to do with what you mentioned.  I guess we will know Sunday when we turn it back on.  So I guess if it is messed up I will have some idea of what might have happened. 

Then when it finished the update it wanted me to set everything up again.

Thanks! Just getting the info from the internet.

I get that.  I was asking where does it come from?  Not your info but the virus.  Like I said, most of it hurts my head. lol  Where did you get your info?  Is it something that just pops up like a lot of viruses do?  Something you click on?  Like I said, when I turned the computer on at church it done some kind of update.  Then it updated the programs you are talking about.  It just happened.  I could not stop it.  So now I am curious as to if it could have anything to do with what you mentioned.  I guess we will know Sunday when we turn it back on.  So I guess if it is messed up I will have some idea of what might have happened. 

Then when it finished the update it wanted me to set everything up again.

Why do people such long, long paragraphs?  I just ignore it.  My head hurts and then the pain behind my eye starts.  Condensed it down or just paraphrase. 

LOL Then why did you do exactly what you complain about others doing. If it hurts your head then don't look at it.

[ancmetro]

  There are so many Internet hackers, it hurts so much.
These Internet hackers are also after your personal data that
they try to sell...and re-sell. Try to protect yourself by not
giving them too much personal data.