Russian hackers have been tracked targeting a Ukrainian state agency using a malicious version of the WinRAR archiver.
The campaign is a continuation of Russia's year-long efforts to disrupt Ukraine's digital infrastructure.
- The hackers deployed destructive VBScript code in the self-extracting archive module, which was self-executed on the victim's computer.
- Once executed, the VBScript code launched a series of commands that culminated in the erasure of all files and folders on the victim's hard drive.
- The attack was carried out on March 24, 2023, and targeted the Ukrainian Regional Development Agency, which is responsible for promoting economic development in the country's regions.
- Some of the threat vectors that were used in the campaign include spear-phishing emails and compromised websites.
أضف تعليقاً: