Attacks carried out with documents pepped up with macros seem to become in vogue again. G DATA’s security experts have analyzed several cases within the last weeks, in which active content in documents triggers an infection. The experts want to explain two different approaches for the same current goal: infect the user with malware that enlists the machine as zombie PC in the Andromeda/Gamarue botnet.
Please refer to the chapter “What is a macro?” at the bottom of the article to read about macros and the default settings in Windows operating systems. You can also find all hashes of the samples involved in the two cases at the very end of this article.
more here..........https://blog.gdatasoftware.com/blog/article/the-andromedagamarue-botnet-is-on-the-rise-again.html
Please refer to the chapter “What is a macro?” at the bottom of the article to read about macros and the default settings in Windows operating systems. You can also find all hashes of the samples involved in the two cases at the very end of this article.
more here..........https://blog.gdatasoftware.com/blog/article/the-andromedagamarue-botnet-is-on-the-rise-again.html