ObliqueRAT: New RAT hits victims' endpoints via malicious documents
released on 2020-02-23 @ 09:00:39 PM
Cisco Talos has observed a malware campaign that utilizes malicious Microsoft Office documents (maldocs) to spread a remote access trojan (RAT) we are calling "ObliqueRAT."
These maldocs use malicious macros to deliver the second stage RAT payload.
This campaign appears to target organizations in Southeast Asia.