Java-based malware that’s been used to exploit at least three US-based organizations. One of the victims was identified as a very large American independent oil and gas corporation. Attacks have been tied to the Icefog APT attack campaign, which historically has used Windows Preinstallation Environment files to infect targets. The “Javafog” malware used by attackers was, as the name implies, written in Java. It includes only basic functionality, such as the ability to upload files to a designated server, as well as change the command-and-control (C&C) server.”]
Source: https://www.darkreading.com/attacks-breaches/java-icefog-malware-variant-infects-u-s-businesses