PDF Phishing Leads to Nanocore RAT, Targets French Nationals

October 12, 2017

Recently, FortiGuard Labs found a phishing campaign targeting French Nationals. In this campaign, a PDF file with an embedded javascript is used to download the payload from a Google Drive shared link. As it turns out, the downloaded file is an HTA (HTML Application) file, a format that is becoming more and more common as a malware launch point. It is usually used as a downloader for the actual binary payload. However in this campaign,...

Read more...

Previous Article
PDF Phishing Leads to Nanocore RAT, Targets French Nationals
PDF Phishing Leads to Nanocore RAT, Targets French Nationals

Recently, FortiGuard Labs found a phishing campaign targeting French Nationals. In this campaign, a PDF fil...

Next Article
OT and IT: A Fight Over the Control of Digital Ground
OT and IT: A Fight Over the Control of Digital Ground

This change is also causing OT and IT to fight over the control of digital ground. While OT is growing, it ...