Are MOUSEISLAND malware procedures mitigated on this host?

/static/assets/windows-logo.svg
CISA released an advisory in August 2022 on MOUSEISLAND, which is classified as a macro downloader. This TTP downloads a ZIP file, extracts it, and if MS Office is installed then attempts to run it. The macro attempts to download an EICAR file. Protection from MOUSEISLAND is important because this malware serves as the initial phase for ransomware.
locked
View Command

To view this TTPs command, you must be logged in with a professional or enterprise license.

Login

Test this TTP

Download Operator (1.7.0)
Test this TTP using one of our Operator chains
Are MOUSEISLAND malware procedures mitigated on this host?

2022-09-19

/static/assets/windows-logo.svg
Emulates procedures found in MOUSEISLAND malware.