Malicious Microsoft Excel add-ins used to deliver RAT malware

Researchers report a new version of the JSSLoader remote access trojan being distributed malicious Microsoft Excel addins. The particular RAT (remote access trojan) has been circulated in the wild since December 2020, linked to the financially-motivated Russian hacking group FIN7, also known as “Carbanak.” JSSLoader is a small, lightweight RAT that can perform data exfiltration, establish persistence, fetch and load additional payloads, auto-update itself, and more.

Read full article on Bleeping Computer

 


Date:

Categorie(s):