Living-Off-the-Land - 1

security: New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

Microsoft reports a new ClickFix variant, “CrashFix,” that intentionally crashes browsers to trick users into running commands that install a Python-based remote access trojan (RAT). The campaign abuses built-in utilities (finger.exe) and a portable Python runtime to reduce detection and maintain persistence on targeted systems.