Targeted operation against Ukraine exploited 7-year-old MS Office bug
Security Affairs
APRIL 28, 2024
The researchers found a malicious PPSX (PowerPoint Slideshow signal-2023-12-20-160512.ppsx) ppsx) file uploaded from Ukraine to VirusTotal at the end of 2023. The payload includes a dynamic-link library (vpn.sessings) that injects the post-exploitation tool Cobalt Strike Beacon into memory and awaits commands from the C2 server.
Let's personalize your content