New PowerShell Malware Project
Simply drop SystemInformation.ps1 using your prefered persistence method. For ideas, look at the Excel file which has a macro to drop the script onto the system.
Each time SystemInformation.PS:
- Collect bunch of info
- Collect WinSCP Passwords
- LSA Secrets dump
- Windows Hash dump
- Connect to C&C to download commands to run
Enjoy