The file is typically used in "Job Seeker" or "Lure" campaigns, where attackers pose as recruiters to trick professionals into downloading and executing malware [1, 3]. Key Technical Features
It establishes a connection to exfiltrate system data and receive further instructions [2, 5].
If you have encountered this file, it should be treated as a . It is designed for espionage and data theft , specifically targeting aerospace, defense, and financial sectors [1, 2].
: The file often uses password protection (e.g., password "123") to prevent automated sandbox scanning and email gateway detection [1, 6]. Risk Assessment
The file is typically used in "Job Seeker" or "Lure" campaigns, where attackers pose as recruiters to trick professionals into downloading and executing malware [1, 3]. Key Technical Features
It establishes a connection to exfiltrate system data and receive further instructions [2, 5].
If you have encountered this file, it should be treated as a . It is designed for espionage and data theft , specifically targeting aerospace, defense, and financial sectors [1, 2].
: The file often uses password protection (e.g., password "123") to prevent automated sandbox scanning and email gateway detection [1, 6]. Risk Assessment
English 
German 
Spanish 
Portuguese 
Finnish 
Korean 
Japanese 
French 
Italian 
Arabic 
Russian