DarkHydrus Hacking Group Uses Macro-Enabled Excel Document that Delivers RogueRobin Malware

21 January 2019

DarkHydruns APT Group targets government entities in the middle eats with weaponized excel documents that delivers a new variant of RogueRobin trojan and can establish communication with C2 server through DNS tunnel and Google Drive API. The campaign uses a weaponized Excel document with macro enabled(xlsm) to deliver the malware, once the user open the document and after clicking “Enable Content” the macro executes immediately.

Read full news article on GBHackers

Date:

21 January 2019

Categorie(s):

NEWS

Tag(s):

Cyber Threats, Excel, Hacking Group, Malware, Microsoft, Microsoft Office

Essential report: can Labor meet the demand for online safety protections? – podcast8 May 2024
GitHub Enables Dependabot via GitHub Actions, Improves Supply Chain Security8 May 2024
Google Simplifies Two-Factor Authentication Setup Process8 May 2024
Supply Chains, Firmware, And Patching – Jason Kikta – BTS #298 May 2024
97% of organizations hit by ransomware turn to law enforcement8 May 2024