Malicious Windows Script Components File Execution by TAEF Detection (634b00d5-ccc3-4a06-ae3b-0ec8444dd51b)

Windows Test Authoring and Execution Framework (TAEF) framework allows you to run automation by executing tests files written on different languages (C, C#, Microsoft COM Scripting interfaces Adversaries may execute malicious code (such as WSC file with VBScript, dll and so on) directly by running te.exe

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Malicious Windows Script Components File Execution by TAEF Detection (634b00d5-ccc3-4a06-ae3b-0ec8444dd51b)	Sigma-Rules	System Binary Proxy Execution - T1218 (457c7820-d331-465a-915e-42f85500ccc4)	Attack Pattern	1