IndigoDrop spreads via military-themed lures to deliver Cobalt Strike

By Asheer Malhotra.

Cisco Talos has observed a malware campaign that utilizes military-themed malicious Microsoft Office documents (maldocs) to spread Cobalt Strike beacons containing full-fledged RAT capabilities. These maldocs use malicious macros to deliver a multistage and highly modular infection. This campaign appears to target military and government organizations in South Asia.

You can read the full article here.