Attacker Employs Multi-Stage Malware Strategy to Target Ukraine

Threat Level – Amber | Vulnerability Report
Download PDF

A new sophisticated cyber attack has been detected targeting Ukraine, aiming to deploy Cobalt Strike and take control of compromised hosts. The attack chain begins with a Microsoft Excel file containing an embedded VBA macro that initiates the infection. The attacker employs a multi-stage malware strategy to deliver the infamous ‘Cobalt Strike’ payload and establish communication with a command-and-control (C2) server.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox