A Chinese-linked hacking group deployed a new malware strain dubbed Dudell as part of attacks targeting Cambodian government organizations between December 2018 and January 2019. The threat group tracked as Rancor by Palo Alto Networks’ Unit 42 is known to have operated cyber-espionage campaigns against other targets from South East Asia since at least 2017. The DUDELL malware downloader was delivered in the form of a decoy Microsoft Excel document designed to run malicious macros on the target’s computer with the end goal of downloading and executing second stage malware payloads.
Source: https://www.bleepingcomputer.com/news/security/chinese-rancor-apt-refreshes-malware-kit-for-espionage-attacks/