Intel Name: Infostealer malware formbook spread via phishing campaign – part i
Date of Scan: April 23, 2025
Impact: High
Summary: We observed a phishing campaign in the wild distributing a malicious Word document attachment crafted to exploit the CVE-2017-11882 vulnerability. Upon deeper analysis, we identified that the campaign was delivering a new variant of Formbook malware. Formbook is an info-stealer targeting Windows systems, designed to harvest sensitive data such as stored credentials, keystrokes, screenshots, and clipboard content from infected devices.
