OceanLotus Uses Web Archive File Format to Deliver Malware

Experts claim that OceanLotus’s campaign is actively using web archive files in its attacks that involves web archive file laden with a malicious Word doc. The malware collects different information, such as network adapter, a list of system directories and files, username, computer name, and checks other processes. Experts recommend organizations leverage the provided IoCs for detecting and preventing active attacks.