Tag: DEEP#GOSU Malware Campaign

New DEEP#GOSU Malware Campaign Targets Windows Users with Advanced Tactics
News

New DEEP#GOSU Malware Campaign Targets Windows Users with Advanced Tactics

PowerShell and VBScript malware are being used in a new, sophisticated assault campaign that targets Windows PCs in order to obtain private data. The campaign, called DEEP#GOSU by cybersecurity firm Securonix, is most likely connected to the state-sponsored group in North Korea that is being tracked as Kimsuky. The DEEP#GOSU malware payloads are a multi-stage, highly sophisticated threat that is intended to operate covertly on Windows systems, particularly when it comes to network monitoring, according to a technical analysis shared with The Hacker News by security researchers Den Iuzvyk, Tim Peck, and Oleg Kolesnikov. Keylogging, clipboard monitoring, dynamic payload execution, data exfiltration, persistence using both scheduled tasks and self-executing PowerShell scripts using ...