Expanded attacks deployed by SideWinder APT

Attacks by SideWinder begin with the delivery of spear-phishing emails with a malicious LNK file-containing ZIP file or Office document, which triggers a multi-stage infection chain involving JavaScript malware and the Backdoor loader module that ultimately results in the deployment of the sophisticated .NET-based StealerBot payload.

Article Link: Expanded attacks deployed by SideWinder APT | SC Media