A recent cyberattack used a malicious Word document delivered via phishing emails, triggering the download of malware payloads. The payloads include OriginBotnet, RedLine Clipper, and Agent Tesla, which are used for keylogging, cryptocurrency theft, and sensitive information gathering. OriginBotnet gathers crucial data from infected Windows machines and communicates with a C2 server. The attack displayed clever methods to avoid detection and maintain persistence. #OriginBotnet #WordDocument #CyberAttack

https://cybersecuritynews.com/originbotnet-attack-windows/