Cybersecurity researchers have shed light on a new malware campaign that makes use of a PowerShell-based shellcode loader to deploy a remote access trojan called Remcos RAT.
« Threat actors delivered malicious LNK files embedded within ZIP archives, often disguised as Office documents, » Qualys security researcher Akshay Thorve said in a technical report. « The attack chain leverages mshta.exe for
