You've Got Malware: FINALDRAFT Hides in Your Drafts
released on 2025-02-14 @ 03:42:43 PM
While investigating REF7707, Elastic Security Labs discovered a new family of previously unknown malware that leverages Outlook as a communication channel via the Microsoft Graph API. This post-exploitation kit includes a loader, a backdoor, and multiple submodules that enable advanced post-exploitation activities.