ObliqueRAT returns with new campaign using hijacked websites

By Asheer Malhotra.

Cisco Talos has observed another malware campaign that utilizes malicious Microsoft Office documents (maldocs) to spread the remote access trojan (RAT) ObliqueRAT.
This campaign targets organizations in South Asia.ObliqueRAT has been linked to the Transparent Tribe APT group in the past.This campaign hides the ObliqueRAT payload in seemingly benign image files hosted on compromised websites.
What’s new?Cisco Talos recently discovered another new campaign distributing the…

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Article Link: http://feedproxy.google.com/~r/feedburner/Talos/~3/TszHfxDii4A/obliquerat-new-campaign.html