“Go” because the code embedded in the image is written in Golang. It is a popular programming language among hackers because of its hard-to-recognize advantages and its use in almost all systems. Victims will receive an email with an attachment and a .Word document called Geos-Rate.docx.
Malware hides in images
After opening the document with a text editor, if the automatic executionActivated in Word, the malicious code is repatriated, and displayed in the document at the same time Smacs 0723 was released last July. From that moment on, Connect to its encrypted server.
This maneuver is only the first step for pirates. The rest remains unclear, and experts don’t know what the ultimate goal of these attacks is. It must be said that the campaign targets victims in different countries and the payload is not always the same.
As always, a Word file appearing as an attachment in an email urging you to open it should raise the most suspicion.Likewise, althoughBlock execution by default For downloaded files, it’s still a very bad idea for users to automatically activate them.