.. /.Cab

Phishing

File Archiver

Contributors:

mr.d0x

Description:

CAB or Windows Cabinet files are compressed archive files. They are used by attackers to deliver malware.

OS:

Windows

Recommendation:

Block CAB files that are delivered through email.

Resources:

https://www.trendmicro.com/vinfo/se/security/news/cybercrime-and-digital-threats/loki-delivered-as-cab-file-attachment

File Samples: