Chinese-backed hacking group APT27 or Emissary Panda using malware variant HyperBro against German commercial companies. Attackers exploiting vulnerabilities in Microsoft Exchange Server 2013, 2016 and 2019, German government says. Malware typically consists of three components: A genuine loader, a malicious DLL loader loaded from the former component via DLL hijacking; An encrypted and compressed blob, which decrypts to a PE-based payload that has its command-and-control information hard-coded within. By accessing supply chain organizations, attackers can “leverage them to attack other companies””]
Source: https://www.cuinfosecurity.com/chinese-apt-targeting-german-enterprises-a-18480