Skip to main content

Ukraine_2021.7z

Cyber-Threat Spotlight: The Ukraine_2021.7z Malware Campaign

: By "double-archiving" files, attackers prevented the MotW tag from propagating to the inner malicious payload. Ukraine_2021.7z

According to reports from Trend Micro and other researchers, the affected entities include: Ministry of Justice of Ukraine Kyiv Water Supply Company (Kyivводоканал) Zaporizhzhia Automobile Plant (ZAZ) Kyiv Public Transportation (Kyivпастранс) How to Protect Yourself Cyber-Threat Spotlight: The Ukraine_2021

: When a victim opened the inner file, Windows did not trigger the usual security warnings, allowing the SmokeLoader malware to execute silently. Tactics Used Ukraine_2021.7z