Attackers are using the normally harmless Windows Finger command to download and install a malicious backdoor on victims’ devices. The ‘Finger’ command is a utility that originated in Linux/Unix operating systems that allows a local user to retrieve a list of users on a remote machine or information about a particular remote user. In September, we reported that security researchers discovered a way to use Finger as a LoLBin to download malware from a remote computer or exfiltrate data. This week, security researcher Kirk Sayre found a phishing campaign utilizing the Finger command.
Source: https://www.bleepingcomputer.com/news/security/windows-finger-command-abused-by-phishing-to-download-malware/