Malware Delivered Through .inf File, (Mon, Jun 19th)

This post was originally published on this site

Microsoft has used “.inf” files for a while[1]. They are simple text files and contain setup information in a driver package. They describe what must be performed to install a driver package on a device. When you read them, the syntax is straightforward to understand. The file is based on sections that describe what must be performed. One of them is very interesting for attackers: [RunPreSetupCommandsSection]. Note that .inf files cannot be executed “as is”.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.