Malicious doc campaign unleashes Cobalt Strike on gov’t, military orgs in South Asia

A military-themed malware campaign targeting military and government organizations in South Asia unleashes “maldocs” that spread full remote-access trojan (RAT) capabilities.

The multistage chain attack, which began in 2018, infects endpoints with customized beacons and a modular dropper that Talos calls IndigoDrop, which executes the final payloads, Cisco Talos reported

...continue reading...

Source: SC Magazine / Article: "Malicious doc campaign unleashes Cobalt Strike on gov’t, military orgs in South Asia"