The new version of Bisonal Malware is discovered that it is carried by Weaponized PDF Icon that mainly targeting the organizations related to government, military or defense industries. Researchers believe that there is a group behind this massive attack and investigation is still going on. The researchers identified 2 primary difference between the old version and the new version that includes C2 communication, code rewritten and the malware authors added a lot of evasion techniques to maintain the persistence. Currently distributing malware campaign mainly focus on Russia and South Korea which contain some of the common attacks compare with the old. version.”]
Source: https://gbhackers.com/bisonal-malware-malicious-pdf/