Differences

This shows you the differences between two versions of the page.

--- create_a_phishing_campaign_with_malware_simulations [2019/09/10 08:58] – lucy
+++ create_a_phishing_campaign_with_malware_simulations [2020/05/18 07:54] – lucy
@@ Line 22: / Line 22: @@
-**Note:** The files are non-intrusive, run only in the memory and have no effect on the System (no changes are made). In the current edition, the executable runs only on Windows (Windows 7/8).
+**Note:** The files are non-intrusive, run only in the memory and have no effect on the System (no changes are made). In the current edition, the executable runs only on Windows (Windows 7/8/10).
@@ Line 183: / Line 183: @@
   * Download as a plain exe
+Those settings can be applied within the scenario settings of the specific template. Choose archive (1), Tunnel (2) or PDF (3) for the according method:
+{{ sc_et_fil.png?600 }}
+===== Q&A =====
+  * Do the files need to be installed? No, the files are non-intrusive, run only in the memory and have no effect on the System (no changes are made).
+  * Do the files need to be run with elevated permissions? No. The files can run with limited, standard windows user rights.
+  * Our filters block file types like .exe- How can I still use the files? Use a different file format within the scenario settings (e.g. place the exe in an archive like a zip file or place it within a PDF as an attachment).
+  * Can I run the fies on MAC or linux? No: In the current edition, the executable runs only on Windows (Windows 7/8/10).
+  * Windows defender blocks the files - can this be prevented? It can (using "whitelisting" inside the Windows Defender Security Center). But it is normal that defender blocks the code as defender will block any unknown code which is not officially signed. The files unfortunatly cannot be signed, as the hash value is different for each user (the files get compiled on the fly individually for each single user)