Malicious Email Delivers Malware with Advanced Capabilities

A malicious email delivered a .cmd file containing malware that performs privilege escalation, bypasses antivirus detection, downloads additional payloads, establishes persistence, and self-deletes after execution. The email was received by an individual identified as Janô Falkowski Burkard, who shared it for analysis. The attack chain begins with an unusual email sent from a seemingly trusted contact, though no specific timeline, affected systems, or technical indicators (e.g., hashes, CVE IDs) were provided. The malware’s capabilities include evading security tools and maintaining access on compromised systems. No geographic or organizational scope of the attack was disclosed.