Researchers observed a new wave of infamous Trickbot Malware campaign via a dozen of malicious documents and infect the Windows users by abusing Remote Desktop ActiveX Control. Researchers believe that other groups also misusing the same, and earlier controls although with a slightly different technique. The malicious OSTAP JavaScript downloader was hidden in the document with white color letters which was marked as red color in the above image. Researchers said There are hundreds of more objects that have been introduced in the latest Windows 10 and even dozens of more methods in the described object that sophisticated attackers can abuse”]
Source: https://gbhackers.com/remote-desktop-activex-control/