A new type of malware, dubbed ForeLord, has been uncovered in a recent spear phishing campaign. Researchers tie the attack to a known advanced persistence threat (APT) group known as Cobalt Ulster. The emails were targeting organizations in Turkey, Iraq, Jordan, global government organizations and unknown entities in Georgia and Azerbaijan. Researchers say the attack is still very state driven, if you will, not going after just random people, it s definitely sort of specifically targeted. An interesting part about the malware is that some of its command and control was done via DNS text fields.
Source: https://threatpost.com/cobalt-ulster-strikes-again-with-new-forelord-malware/153418/