North Korea-linked Konni APT uses Russian-language weaponized documents
Security Affairs
NOVEMBER 24, 2023
” The macro launches the “check.bat” script using the “vbHide” parameter to avoid presenting a command prompt window to the victim. “As this malware continues to evolve, users are advised to exercise caution with suspicious documents.” The Batch script conducts system checks and UAC bypass.
Let's personalize your content