Quick Heal’s APT Team encountered an active campaign by APT Transparent Tribe (APT36) that is luring the Indian Army into opening the file themed ‘Revision of Officers posting policy.’ Malicious macro-enabled PowerPoint add-on files (PPAM) are utilized to wrap Crimson RAT payloads by embedding archive files as OLE objects.

Download Now!

    Would you like to take a quick demo ?

    By submitting this form you agree to the Website Terms of Use, consent to be contacted by Seqrite and its partners, and acknowledge the Privacy Policy.