The fake e-mails appear to be targeting some Japanese organizations and certain Chinese journalists by flaunting as an attachment a bogus copy of the Mandiant report on the Chinese spy unit launched this week. In the background the attachment is exploiting a vulnerability in Adobe Reader (CVE-2013-0641) to automatically install a malware, which downloads additional malicious components. The installed malware immediately contacts a C2 server hosted in Korea and communicates with some legitimate Japanese websites, probably to make security services think that software was legitimate.”]