Malware Disguised as a Manuscript Solicitation Letter (Targeting Security-Related Workers) - ASEC BLOG

Malware Disguised as a Manuscript Solicitation Letter (Targeting Security-Related Workers)

On January 8th, the ASEC analysis team identified the distribution of a document-type malware targeting workers in the security field. The obtained malware uses an external object within a Word document to execute an additional malicious macro. Such a technique is called the template Injection method. and a similar attack case was covered in a previous blog post. When the Word document is opened, it downloads and executes an additional malicious Word macro document from the threat actor’s C&C server. … Continue reading Malware Disguised as a Manuscript Solicitation Letter (Targeting Security-Related Workers)