Attacker Employs Multi-Stage Malware Strategy to Target Ukraine

Summary:

A new sophisticated cyber attack has been detected targeting Ukraine, aiming to deploy Cobalt Strike and take control of compromised hosts. The attack chain begins with a Microsoft Excel file containing an embedded VBA macro that initiates the infection. The attacker employs a multi-stage malware strategy to deliver the infamous ‘Cobalt Strike’ payload and establish communication with a command-and-control (C2) server.

Threat Level – Amber | Attack Report

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.