Beware Of Weaponized Zip Files That Deliver WINELOADER Malware

22 April 2024

APT29, a Russian threat group, targeted German political parties with a new backdoor called WINELOADER using spear-phishing emails containing malicious links to ZIP files hosted on compromised websites. The ZIP files deployed an HTA that initiated a multi-stage infection chain, delivering WINELOADER. The backdoor has functionalities for communication with command and control servers and utilizes evasion techniques.

Source: GBHackers

Date:

22 April 2024

Categorie(s):

NEWS

Tag(s):

Cyber Attack, Cyber Security News, Email Security, Files, Zip

From Spam to AsyncRAT: Tracking the Surge in Non-PE Cyber Threats8 May 2024
Businesses lack AI strategy despite employee interest — Microsoft survey8 May 2024
#RSAC: CISA Launches Vulnrichment Program to Address NVD Challenges8 May 2024
Top FBI Official Urges Agents to Use Warrantless Wiretaps on US Soil8 May 2024
GPU glut and quantum shift: theCUBE talks tech insights from RSA Conference8 May 2024