This tool modifies a JavaScript constraints file and executes it with SYSTEM-level permissions.
GooseEgg is typically deployed with a batch script, which we have observed using the nameexecute.batanddoit.bat.
This batch script writes the fileservtask.bat,which contains commands for saving off/compressing registry hives.
As mentioned earlier, the company patched the Print Spooler security flaw in 2022.
It also patched the previously exploited PrintNightmare vulnerabilities in 2021.
source: www.techworm.net
