Lazarus Group, a team of cyber criminals reportedly based in North Korea, is believed to be targeting its southern neighbor with malicious documents. The files, recently reviewed by South Korean researchers and experts at AlienVault, pack Manuscrypt malware as the final payload.
FlawedAmmyy RAT is an uncommon piece of malware that target Microsoft Publisher. Phishing Email comes with a .pub attachment (Microsoft Office Publisher file) and the subject "Payment Advice".
NOKKI RAT is a politically motivated malware that targets politically motivated victims in Russia and Cambodia. It obscure itself by appearing a PDF file but the extension is Microsoft executable .scr file.
A new phishing campaign spreading Adwind 3.0 Remote Access Trojan (RAT) via Microsoft Excel. It targets Windows, Mac and Linux platform. On windows Adwind 3.0 uses Dynamic Data Exchange (DDE) code injection attack on Microsoft Excel.
Parasite HTTP RAT is modular piece of code written entirely on C. It has now dependency and run directly on the operation system.